Description
Buffer overflow in Ability Server 2.25, 2.32, 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long APPE command.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by KaGra · pythonremotewindows
https://www.exploit-db.com/exploits/592
References (6)
Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/12347
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/18405
Exploit, Vendor Advisory mailing-list
x_refsource_mlist
http://lists.virus.org/dw-0day-0412/msg00004.html
Exploit, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/12941
Exploit, Vendor Advisory vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1012464
Exploit, Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/11508
Scores
EPSS
0.1673
EPSS Percentile
95.0%
Details
Status
published
Products (3)
code-crafters/ability_server
2.2.5
code-crafters/ability_server
2.3.2
code-crafters/ability_server
2.3.4
Published
Oct 22, 2004
Tracked Since
Feb 18, 2026