cve/CVE-2015-5917.md at master

0xMarcio/cve

Fork 0

Files

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

822 B

Raw Permalink Blame History

CVE-2015-5917

Description

The glob implementation in tnftpd (formerly lukemftpd), as used in Apple OS X before 10.11, allows remote attackers to cause a denial of service (memory consumption and daemon outage) via a STAT command containing a crafted pattern, as demonstrated by multiple instances of the {..,..,..}/* substring.

POC

Reference

https://cxsecurity.com/issue/WLB-2013040082
https://www.youtube.com/watch?v=MBK4QYkUm10

Github

No PoCs found on GitHub currently.

822 B Raw Permalink Blame History

CVE-2015-5917

Description

POC

Reference

Github

822 B

Raw Permalink Blame History