|
| 1 | +[basic] |
| 2 | +description = "Titan FTP Server 3.01 build 163 及更早版本(build 169 之前)在处理 LIST -L 命令时存在拒绝服务漏洞。远程认证用户在执行 LIST -L 命令过程中主动断开连接,触发服务器访问已关闭的无效套接字,导致 FTP 服务进程崩溃。攻击者需持有合法账户才能利用,攻击复杂度较低。" |
| 3 | +published = "2004-07-07T04:00:00.000" |
| 4 | +remediation = "升级 Titan FTP Server 至 3.10 build 169 或更高版本。如无法立即升级,可在防火墙或 FTP 服务端限制可登录用户范围,仅允许可信 IP 连接,降低被利用风险。" |
| 5 | +score = 5 |
| 6 | +severity = "MEDIUM" |
| 7 | +sources = ["nuclei"] |
| 8 | +title = "Titan FTP Server 3.0 LIST命令拒绝服务漏洞" |
| 9 | +updated = "2026-06-16T22:05:38.700" |
| 10 | + |
| 11 | +[exploit] |
| 12 | +exp_urls = [] |
| 13 | +poc_urls = [] |
| 14 | + |
| 15 | +[id] |
| 16 | +aliases = ["CVE-2004-0437"] |
| 17 | +ave_id = "AVE-2004-0001" |
| 18 | + |
| 19 | +[meta] |
| 20 | +collected_at = "2026-07-15T00:00:00Z" |
| 21 | +status = "completed" |
| 22 | + |
| 23 | +[references] |
| 24 | +urls = [ |
| 25 | + "http://archives.neohapsis.com/archives/vulnwatch/2004-q2/0025.html", |
| 26 | + "http://marc.info/?l=bugtraq&m=108378048513596&w=2", |
| 27 | + "http://www.securiteam.com/windowsntfocus/5RP0215CUU.html", |
| 28 | + "https://exchange.xforce.ibmcloud.com/vulnerabilities/16057", |
| 29 | + "https://www.exploit-db.com/exploits/24080", |
| 30 | + "https://github.com/projectdiscovery/nuclei-templates/blob/main/network/cves/2004/CVE-2004-0437.yaml", |
| 31 | + "https://github.com/trickest/cve/blob/a90de4f84b4783951362f491671e1e9decfc17cb/2004/CVE-2004-0437.md", |
| 32 | + "https://github.com/projectdiscovery/nuclei-templates/blob/a5c2e8e4dab8c8e618ba76807c3e07587b7d781a/network/cves/2004/CVE-2004-0437.yaml", |
| 33 | + "https://github.com/CVEProject/cvelistV5/blob/d5838f491a2d04e9f823fb9638e9e6f0b038d399/cves/2004/0xxx/CVE-2004-0437.json", |
| 34 | + "https://github.com/LiuCan01/cve-list-pro/blob/78b55511cee3604c22d518e32822f0435d0cacc0/cve-list/CVE-2004/CVE-2004-0437", |
| 35 | + "https://github.com/Patrowl/PatrowlHearsData/blob/23b9072d94002e85c65869c9b10a30b4a0f4057c/CVE/data/2004/CVE-2004-0437.json", |
| 36 | + "https://github.com/mabitoski/cve_submodules/blob/44ad7e2705b3aef1b2ffaf64bd47596c10a6c2e4/2004/CVE-2004-0437.md", |
| 37 | + "https://github.com/adampielak/nuclei-templates/blob/ac9605f5a915670fd80cb4e1904f4435f1835b65/nuclei-v3/C/CVE-2004-0437_13.yaml", |
| 38 | + "https://github.com/roy9495/CVE-Extractor/blob/21bc96060eb3124bb762be8e16b95c7e2b15d4dc/cvelistV5-main/cves/2004/0xxx/CVE-2004-0437.json", |
| 39 | + "https://github.com/Vasileios-Mavroeidis/semantic-stix-vulnerability/blob/30f07606133364b9623f401bc306c8c9cbcf9386/vulnerability/vulnerability--cce184f2-cdeb-4edf-8aa4-b5ce27ee8aa2.owl", |
| 40 | + "https://github.com/Bmcbob76/prometheus-prime/blob/952c957f0c453e1048be9399b27309a12965e432/NUCLEI_TEMPLATES/network/cves/2004/CVE-2004-0437.yaml", |
| 41 | +] |
0 commit comments