Vulnerability Name:

CCN-19446

Published:2005-03-09
Updated:2005-03-09
Summary:3CServer is a TFTP and FTP server and client from 3Com for Microsoft Windows operating systems. For 3CServer version 1.1, the default settings can allow "anonymous" login which can be used to exploit multiple buffer overflow vulnerabilities in the FTP commands supported.
CVSS v3 Severity:
CVSS v2 Severity:
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: BugTraq Mailing List, Mon Feb 07 2005 - 11:15:25 CST
Vulnerability in 3Com 3CServer v1.1

Source: CCN
Type: 3Cserver Web site
3Com Software Library - Utilities for 32 bit Windows

Source: XF
Type: UNKNOWN
3cserver-ftp-running(19446)

Vulnerable Configuration:Configuration CCN 1:
  • cpe:/a:3com:3cserver:1.1:*:*:*:*:*:*:*
  • AND
  • cpe:/o:microsoft:windows_95:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_98se:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_me:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_vista:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_7:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2008:r2:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_server_2012:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_8:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    3com 3cserver 1.1
    microsoft windows 95 *
    microsoft windows nt 4.0
    microsoft windows 98se *
    microsoft windows 2000 *
    microsoft windows me *
    microsoft windows xp
    microsoft windows 2003 server *
    microsoft windows vista *
    microsoft windows 7 *
    microsoft windows server 2008 *
    microsoft windows server 2008 - r2
    microsoft windows server 2012
    microsoft windows 8 *