Format string vulnerability in hsftp 1.11 allows remote...
High severity
Unreviewed
Published
Apr 29, 2022
to the GitHub Advisory Database
•
Updated Jan 30, 2023
Description
Published by the National Vulnerability Database
Mar 15, 2004
Published to the GitHub Advisory Database
Apr 29, 2022
Last updated
Jan 30, 2023
Format string vulnerability in hsftp 1.11 allows remote authenticated users to cause a denial of service and possibly execute arbitrary code via file names containing format string characters that are not properly handled when executing an "ls" command.
References