CVE-2009-4753

Published Mar 29, 2010

Last updated 6 years ago

Overview

Description: Multiple buffer overflows in the FTP server on the Addonics NAS Adapter NASU2FW41 with loader 1.17 allow remote attackers to cause a denial of service (TCP/IP outage) via long arguments to the (1) XRMD, (2) delete, (3) RNFR, or (4) RNTO command.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 6.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nas_adapter:nasu2fw41:1.17:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C42388CC-6496-4115-8347-A77E16972703"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nas_adapter:nasu2fw41:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "748D6029-FD71-40F9-BB42-5978861FECD8"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References