CVE-2007-5962
Last modified
CVE-2007-5962 is a vulnerability of currently unknown severity. Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 and Fedora 6 through 8, and on Foresight Linux and rPath appliances, allows remote attackers to cause a denial of service (memory consumption) via a large number of CWD commands, as demonstrated by an attack on a daemon with the deny_file configuration option.. EPSS estimates a 12.06% chance of exploitation in the next 30 days.
Description
Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 and Fedora 6 through 8, and on Foresight Linux and rPath appliances, allows remote attackers to cause a denial of service (memory consumption) via a large number of CWD commands, as demonstrated by an attack on a daemon with the deny_file configuration option.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Enterprise Linux | 5.0 |
| Redhat | Fedora | 6 |
| Redhat | Fedora | 7 |
| Redhat | Fedora | 8 |
| Foresight Linux | Appliances | All versions |
| Rpath | Appliance Platform Agent | All versions |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-5962?
How severe is CVE-2007-5962?
How do I fix CVE-2007-5962?
Are you affected by CVE-2007-5962?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST