Sign-up

ID

VAR-200704-0275


CVE

CVE-2007-2213


TITLE

WS_FTP 2007 of NetscapeFTPHandler of Initialize Service disruption in functions (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2007-003745

DESCRIPTION

Unspecified vulnerability in the Initialize function in NetscapeFTPHandler in WS_FTP Home and Professional 2007 allows remote attackers to cause a denial of service (NULL dereference and application crash) via unspecified vectors related to "improper arguments.". WSFTP is prone to a remote denial-of-service vulnerability. WS_FTP Home is a fast, powerful FTP client program. The NetscapeFTPHandler function of WS_FTP Home has a null pointer reference when processing user input. Local attackers may use this vulnerability to cause denial of service to the server program. ESI 00000000 75DC3E09 MOVZX EAX,WORD PTR [ESI] If the function is executed with incorrect parameters: int Initialize ( char *str1, char *str2) may trigger this vulnerability, resulting in denial of service

Trust: 1.98

sources: NVD: CVE-2007-2213 // JVNDB: JVNDB-2007-003745 // BID: 23584 // VULHUB: VHN-25575

AFFECTED PRODUCTS

vendor:ipswitchmodel:ws ftpscope:eqversion:2007

Trust: 1.6

vendor:ipswitchmodel:ws ftpscope:eqversion:home and professional 2007

Trust: 0.8

vendor:ipswitchmodel:ws ftp homescope:eqversion:2007

Trust: 0.3

vendor:ipswitchmodel:ws ftp server professionalscope:eqversion:2007

Trust: 0.3

sources: BID: 23584 // JVNDB: JVNDB-2007-003745 // CNNVD: CNNVD-200704-418 // NVD: CVE-2007-2213

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2007-2213
value: HIGH

Trust: 1.0

NVD: CVE-2007-2213
value: HIGH

Trust: 0.8

CNNVD: CNNVD-200704-418
value: HIGH

Trust: 0.6

VULHUB: VHN-25575
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2007-2213
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-25575
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-25575 // JVNDB: JVNDB-2007-003745 // CNNVD: CNNVD-200704-418 // NVD: CVE-2007-2213

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2007-2213

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200704-418

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-200704-418

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2007-003745

PATCH
title:WS_FTPurl:http://www.ipswitchft.com/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2007-003745

EXTERNAL IDS
db:NVDid:CVE-2007-2213
Trust: 2.5
db:BIDid:23584
Trust: 2.0
db:JVNDBid:JVNDB-2007-003745
Trust: 0.8
db:CNNVDid:CNNVD-200704-418
Trust: 0.7
db:BUGTRAQid:20070421 WS_FTP HOME 2007 NETSCAPEFTPHANDLER DENIAL OF SERVICE
Trust: 0.6
db:BUGTRAQid:20070422 RE: WS_FTP HOME 2007 NETSCAPEFTPHANDLER DENIAL OF SERVICE
Trust: 0.6
db:XFid:33846
Trust: 0.6
db:VULHUBid:VHN-25575
Trust: 0.1
sources:
            
            
            VULHUB: VHN-25575 // 
            
            
            
            BID: 23584 // 
            
            
            
            JVNDB: JVNDB-2007-003745 // 
            
            
            
            CNNVD: CNNVD-200704-418 // 
            
            
            
            NVD: CVE-2007-2213

REFERENCES
url:http://www.securityfocus.com/bid/23584
Trust: 1.7
url:http://www.securityfocus.com/archive/1/466576/100/0/threaded
Trust: 1.1
url:http://www.securityfocus.com/archive/1/466647/100/0/threaded
Trust: 1.1
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/33846
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-2213
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-2213
Trust: 0.8
url:http://www.securityfocus.com/archive/1/archive/1/466647/100/0/threaded
Trust: 0.6
url:http://www.securityfocus.com/archive/1/archive/1/466576/100/0/threaded
Trust: 0.6
url:http://xforce.iss.net/xforce/xfdb/33846
Trust: 0.6
url:http://www.ipswitch.com/products/ws_ftp/home/index.asp
Trust: 0.3
url:/archive/1/466647
Trust: 0.3
url:/archive/1/466576
Trust: 0.3
sources:
            
            
            VULHUB: VHN-25575 // 
            
            
            
            BID: 23584 // 
            
            
            
            JVNDB: JVNDB-2007-003745 // 
            
            
            
            CNNVD: CNNVD-200704-418 // 
            
            
            
            NVD: CVE-2007-2213

CREDITS
Michal Bucko  michal.bucko@hack.pl
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200704-418

SOURCES
db:VULHUBid:VHN-25575
db:BIDid:23584
db:JVNDBid:JVNDB-2007-003745
db:CNNVDid:CNNVD-200704-418
db:NVDid:CVE-2007-2213

LAST UPDATE DATE
2025-04-10T23:13:18.943000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-25575date:2018-10-16T00:00:00
db:BIDid:23584date:2007-04-23T18:00:00
db:JVNDBid:JVNDB-2007-003745date:2012-09-25T00:00:00
db:CNNVDid:CNNVD-200704-418date:2007-04-25T00:00:00
db:NVDid:CVE-2007-2213date:2025-04-09T00:30:58.490

SOURCES RELEASE DATE
db:VULHUBid:VHN-25575date:2007-04-24T00:00:00
db:BIDid:23584date:2007-04-21T00:00:00
db:JVNDBid:JVNDB-2007-003745date:2012-09-25T00:00:00
db:CNNVDid:CNNVD-200704-418date:2007-04-24T00:00:00
db:NVDid:CVE-2007-2213date:2007-04-24T20:19:00