CVE-2002-1244 | Vulnerability Database | Aqua Security

Format string vulnerability in Pablo FTP Server 1.5, 1.3, and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary code via format strings in the USER command.

Affected Software

Name	Vendor	Start Version	End Version
Pablo_ftp_server	Pablo_software_solutions	1.0 (including)	1.0 (including)
Pablo_ftp_server	Pablo_software_solutions	1.2 (including)	1.2 (including)
Pablo_ftp_server	Pablo_software_solutions	1.3 (including)	1.3 (including)
Pablo_ftp_server	Pablo_software_solutions	1.5 (including)	1.5 (including)

References

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0057.html
http://marc.info/?l=bugtraq\u0026m=103642642802889\u0026w=2
http://www.iss.net/security_center/static/10532.php
http://www.osvdb.org/4996
http://www.pablovandermeer.nl/ftpserver.zip
http://www.securityfocus.com/bid/6099
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0057.html
http://marc.info/?l=bugtraq\u0026m=103642642802889\u0026w=2
http://www.iss.net/security_center/static/10532.php
http://www.osvdb.org/4996
http://www.pablovandermeer.nl/ftpserver.zip
http://www.securityfocus.com/bid/6099

NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1244
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html