← back
CVE-2011-0762

CVE-2011-0762

EPSS 73.9%
Vexday Risk Score
60Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 73.9%KEV nãoPoC públicaNuclei simMetasploit simPatch referenciado
Lifecycle
03 Feb 2011Metasploit module available
02 Mar 2011Public PoC
02 Mar 2011Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU consumption and process slot exhaustion) via crafted glob expressions in STAT commands in multiple FTP sessions, a different vulnerability than CVE-2010-2632.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.