VYPR
Unrated severityNVD Advisory· Published Aug 9, 2013· Updated Jun 16, 2026

CVE-2013-4742

CVE-2013-4742

Description

Buffer overflow in NetWin SurgeFTP before 23d2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string within the authentication request.

Affected products

17
  • Netwin/Surgeftp17 versions
    cpe:2.3:a:netwin:surgeftp:*:*:*:*:*:*:*:*+ 16 more
    • cpe:2.3:a:netwin:surgeftp:*:*:*:*:*:*:*:*range: <=2.3b1
    • cpe:2.3:a:netwin:surgeftp:2.0c:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.0d:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.0e:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.0f:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.2k1:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.2k3:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.2m1:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.3a1:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.3a10:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.3a12:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.3a2:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.3a6:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.3a7:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.3a8:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.3a9:*:*:*:*:*:*:*
    • (no CPE)range: <23d2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.