CVE-2007-5769
netkit-ftp 0.17 20040614 and later - Use-After-Free in getreply Function
Title source: llmDescription
Double free vulnerability in the getreply function in ftp.c in netkit ftp (netkit-ftp) 0.17 20040614 and later allows remote FTP servers to cause a denial of service (application crash) and possibly have unspecified other impact via some types of FTP protocol behavior. NOTE: the netkit-ftpd issue is covered by CVE-2007-6263.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/26764
Mailing List mailing-list
x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=119704348003382&w=2
Exploit, Patch x_refsource_misc
http://bugs.gentoo.org/show_bug.cgi?id=199206
Exploit x_refsource_confirm
http://cvs.fedora.redhat.com/viewcvs/rpms/ftp/F-8/netkit-ftp-0.17-sigseg.patch?view=auto
Scores
EPSS
0.0169
EPSS Percentile
74.5%
Details
CWE
CWE-119
Status
published
Products (1)
netkit-ftp/netkit_ftp
0.17
Published
Dec 06, 2007
Tracked Since
Feb 18, 2026