CVE-2017-6367
NONE EPSS 94.4%
Published Mar 14, 20179y ago · Modified Jun 17, 20262w ago
Published Mar 14, 2017 9y ago
Last Modified Jun 17, 2026 2w ago
Description
In Cerberus FTP Server 8.0.10.1, a crafted HTTP request causes the Windows service to crash. The attack methodology involves a long Host header and an invalid Content-Length header.
Threat Intelligence
EPSS Exploit Probability
94.4% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available
Weaknesses 1
CWE-20 Improper Input Validation Validation
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| cerberusftp | ftp_server | 8.0.10.1 | any |
References 2
- securityfocus.com http://www.securityfocus.com/bid/96887
- exploit-db.com https://www.exploit-db.com/exploits/41596/
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.