Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2011-3976

EPSS 66.26% · P99
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2011-3976

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Stack-based buffer overflow in AmmSoft ScriptFTP 3.3 allows remote FTP servers to execute arbitrary code via a long filename in a response to a LIST command, as demonstrated using (1) GETLIST or (2) GETFILE in a ScriptFTP script.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
AmmSoft ScriptFTP 堆缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
AmmSoft ScriptFTP 3.3版本中存在基于堆的缓冲区溢出漏洞。远程FTP服务器可借助响应LIST命令的超长文件名执行任意代码。已经在ScriptFTP脚本中使用(1) GETLIST或者(2) GETFILE得到证实。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2011-3976

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2011-3976

登录查看更多情报信息。

Same Patch Batch · n/a · 2011-10-04 · 18 CVEs total

CVE-2011-3873Google Chrome 流处理器缓冲区错误漏洞
CVE-2011-3981WordPress Allwebmenus插件actions.php PHP远程文件包含漏洞
CVE-2011-3980TYPO3 Drag Drop Mass Upload 任意文件更新漏洞
CVE-2011-3979Zikula Application Framework theme_admin_setasdefault.php跨站脚本攻击漏洞
CVE-2011-3978LightNEasy LightNEasy.php多个跨站脚本攻击漏洞
CVE-2011-3977NoMachine NX Node nxconfigure.sh文件读取漏洞
CVE-2011-3354Quassel ’core/ctcpparser.cpp‘ 资源管理错误漏洞
CVE-2011-2894Spring Framework ’deserialize‘ 对象权限许可和访问控制问题漏洞
CVE-2011-1572gitolite ADC目录遍历漏洞
CVE-2011-1221RealNetworks RealPlayer多个产品跨域脚本攻击漏洞
CVE-2011-2881Google Chrome Google V8 隐藏对缓冲区错误漏洞
CVE-2011-2880Google Chrome Google V8相关向量释放后使用漏洞
CVE-2011-2879Google Chrome 音频节点输入验证错误漏洞
CVE-2011-2878Google Chrome 权限许可和访问控制问题漏洞
CVE-2011-2877Google Chrome SVG文本输入验证错误漏洞
CVE-2011-2876Google Chrome 使用后释放漏洞
CVE-2011-2443Adobe Photoshop Elements 多个缓冲区溢出漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2011-3976

No comments yet

Leave a comment