Vulnerability Name:

CVE-2000-1116 (CCN-3482)

Assigned:1999-11-09
Published:1999-11-09
Updated:2017-12-19
Summary:Buffer overflow in TransSoft Broker FTP Server before 4.3.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long command.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Denial of Service
References:Source: WIN2KSEC
Type: UNKNOWN
20001018 TransSoft's Broker FTP Server 3.x & 4.x Remote DoS attack Vulnerability

Source: MITRE
Type: CNA
CVE-2000-1116

Source: CCN
Type: OSVDB ID: 13757
Broker FTP Server username Remote Overflow DoS

Source: CCN
Type: BID-783
TransSoft Broker User Name Buffer Overflow Vulnerability

Source: CCN
Type: Underground Security Systems Research advisory USSR-2000054
TransSoft's Broker FTP Server 3.x & 4.x Remote DoS attack Vulnerability

Source: CCN
Type: Underground Security Systems Research advisory USSR-1999009
Remote DoS Attack in TransSoft's Broker Ftp Server v3.5 Vulnerability

Source: XF
Type: UNKNOWN
broker-user-dos(3482)

Source: XF
Type: UNKNOWN
broker-ftp-username-dos(5388)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:transsoft:broker_ftp_server:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:transsoft:broker_ftp_server:3.0_build_1:*:*:*:*:*:*:*
  • OR cpe:/a:transsoft:broker_ftp_server:4.0:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_95:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_98:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    transsoft broker ftp server 3.0
    transsoft broker ftp server 3.0_build_1
    transsoft broker ftp server 4.0
    microsoft windows 95 *
    microsoft windows nt 4.0
    microsoft windows 98 *
    microsoft windows 2000 *
    microsoft windows xp
    microsoft windows 2003_server