VYPR
Unrated severityNVD Advisory· Published Nov 23, 2004· Updated Jun 16, 2026

CVE-2004-0255

CVE-2004-0255

Description

Xlight 1.52, with log to screen enabled, allows remote attackers to cause a denial of service by requesting a long directory consisting of . (dot) and / (slash) characters, which causes the server to crash when the administrator views the log file, possibly triggering a buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:xlight_ftp_server:xlight_ftp_server:1.25:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:xlight_ftp_server:xlight_ftp_server:1.25:*:*:*:*:*:*:*
    • cpe:2.3:a:xlight_ftp_server:xlight_ftp_server:1.41:*:*:*:*:*:*:*
    • cpe:2.3:a:xlight_ftp_server:xlight_ftp_server:1.45:*:*:*:*:*:*:*
    • cpe:2.3:a:xlight_ftp_server:xlight_ftp_server:1.52:*:*:*:*:*:*:*
  • Range: =1.52

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.