Vulnerability Details : CVE-2005-0519
ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (.LNK) file, using SITE UNZIP to extract the .LNK file onto the server, then accessing the file, a different vulnerability than CVE-2005-0520.
Exploit prediction scoring system (EPSS) score for CVE-2005-0519
Probability of exploitation activity in the next 30 days: 1.24%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 84 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2005-0519
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
References for CVE-2005-0519
-
http://www.argosoft.com/ftpserver/changelist.aspx
The resource cannot be found.Patch;Vendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/17939
-
http://www.securityfocus.com/bid/12487
Products affected by CVE-2005-0519
- cpe:2.3:a:argosoft:ftp_server:1.4.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:argosoft:ftp_server:1.4.2.2:*:*:*:*:*:*:*