Vulnerability Details : CVE-2008-4247
ftpd in OpenBSD 4.3, FreeBSD 7.0, NetBSD 4.0, Solaris, and possibly other operating systems interprets long commands from an FTP client as multiple commands, which allows remote attackers to conduct cross-site request forgery (CSRF) attacks and execute arbitrary FTP commands via a long ftp:// URI that leverages an existing session from the FTP client implementation in a web browser.
Vulnerability category: Cross-site request forgery (CSRF)
Exploit prediction scoring system (EPSS) score for CVE-2008-4247
Probability of exploitation activity in the next 30 days: 8.87%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 94 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2008-4247
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2008-4247
-
The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.Assigned by: nvd@nist.gov (Primary)
References for CVE-2008-4247
-
http://www.securitytracker.com/id?1020946
-
http://www.openbsd.org/cgi-bin/cvsweb/src/libexec/ftpd/ftpd.c.diff?r1=1.183&r2=1.184&f=h
Exploit
-
http://www.openbsd.org/cgi-bin/cvsweb/src/libexec/ftpd/ftpcmd.y
-
http://www.openbsd.org/cgi-bin/cvsweb/src/libexec/ftpd/ftpcmd.y.diff?r1=1.51&r2=1.52&f=h
Exploit
- http://securityreason.com/achievement_securityalert/56
-
http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html
Oracle Critical Patch Update - October 2010
-
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2008-014.txt.asc
- http://securityreason.com/securityalert/4313
- http://bugs.proftpd.org/show_bug.cgi?id=3115
-
http://security.FreeBSD.org/advisories/FreeBSD-SA-08:12.ftpd.asc
-
http://www.openbsd.org/cgi-bin/cvsweb/src/libexec/ftpd/ftpd.c
-
http://www.securitytracker.com/id?1021112
Products affected by CVE-2008-4247
- cpe:2.3:o:freebsd:freebsd:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:netbsd:netbsd:4.0:*:*:*:*:*:*:*
- cpe:2.3:o:openbsd:openbsd:4.3:*:*:*:*:*:*:*