Unrated severityNVD Advisory· Published May 18, 2005· Updated Apr 16, 2026
CVE-2005-1666
CVE-2005-1666
Description
Multiple buffer overflows in Orenosv HTTP/FTP Server 0.8.1 allow remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via long arguments to FTP commands such as MKD, RMD, or DELE, which are processed by the (1) ftp_xlate_path, (2) ftp_is_canonical, or (3) os_fn_nativize functions, or (4) a long SSI command that is processed by the parse_cmd function in cgissi.exe.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:orenosv:orenosv_http_ftp_server:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:orenosv:orenosv_http_ftp_server:*:*:*:*:*:*:*:*range: <=0.8.1
- (no CPE)range: =0.8.1
Patches
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- hp.vector.co.jp/authors/VA027031/orenosv/index_en.htmlnvdPatch
- securitytracker.com/idnvdPatch
- www.securiteam.com/windowsntfocus/5FP0H00FPS.htmlnvdExploitVendor Advisory
- www.security.org.sg/vuln/orenosv081.htmlnvdExploitVendor Advisory
- www.securityfocus.com/bid/13546nvdExploitPatch
- www.securityfocus.com/bid/13549nvdExploitPatch
- secunia.com/advisories/15302nvdVendor Advisory
- www.osvdb.org/16165nvd
- www.osvdb.org/16166nvd
- www.vupen.com/english/advisories/2005/0499nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/20510nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/20512nvd
News mentions
0No linked articles in our index yet.