Texas Imperial Software WFTPD and WFTPD Pro Server 3.25 and earlier allow remote attackers to cause a denial of service (application crash) via a long SITE ADMIN command.
Max CVSS
5.0
EPSS Score
2.96%
Published
2007-01-18
Updated
2017-10-19
Buffer overflow in Texas Imperial Software WFTPD Pro Server 3.23.1.1 allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via crafted APPE commands that contain "/" (slash) or "\" (backslash) characters.
Max CVSS
5.8
EPSS Score
3.81%
Published
2006-11-10
Updated
2018-10-17

CVE-2006-4318

Public exploit
Buffer overflow in WFTPD Server 3.23 allows remote attackers to execute arbitrary code via long SIZE commands.
Max CVSS
6.5
EPSS Score
67.46%
Published
2006-08-24
Updated
2017-10-19
WFTPD Pro Server 3.21 allows remote authenticated users to cause a denial of service (crash) via a series of long MLIST commands.
Max CVSS
5.0
EPSS Score
4.04%
Published
2004-08-29
Updated
2017-07-11
WFTPD Pro Server 3.21 Release 1 allocates memory for a command until a 0Ah byte (newline) is sent, which allows local users to cause a denial of service (CPU consumption) by continuing to send a long command that does not contain a newline.
Max CVSS
2.1
EPSS Score
0.04%
Published
2004-11-23
Updated
2017-07-11
Stack-based buffer overflow in WFTPD Pro Server 3.21 Release 1, Pro Server 3.20 Release 2, Server 3.21 Release 1, and Server 3.10 allows local users to execute arbitrary code via long (1) LIST, (2) NLST, or (3) STAT commands.
Max CVSS
7.2
EPSS Score
0.04%
Published
2004-11-23
Updated
2017-07-11
WFTPD 3.00 R5 allows a remote attacker to cause a denial of service by making repeated requests to cd to the floppy drive (A:\).
Max CVSS
5.0
EPSS Score
0.28%
Published
2001-09-20
Updated
2017-12-19
Directory traversal vulnerability in WFTPD 3.00 R5 allows a remote attacker to view arbitrary files via a dot dot attack in the CD command.
Max CVSS
7.5
EPSS Score
1.49%
Published
2001-09-20
Updated
2008-09-05
Directory traversal vulnerability in Winsock FTPd (WFTPD) 3.00 and 2.41 with the "Restrict to home directory" option enabled allows local users to escape the home directory via a "/../" string, a variation of the .. (dot dot) attack.
Max CVSS
5.0
EPSS Score
0.21%
Published
2001-01-09
Updated
2008-09-05
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a "%C" command, which generates an error message that includes the pathname.
Max CVSS
5.0
EPSS Score
0.44%
Published
2000-11-14
Updated
2017-10-10
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to cause a denial of service by sending a long string of unprintable characters.
Max CVSS
5.0
EPSS Score
1.12%
Published
2000-11-14
Updated
2017-10-10
WFTPD and WFTPD Pro 2.41 allows local users to cause a denial of service by executing the RENAME TO (RNTO) command before a RENAME FROM (RNFR) command.
Max CVSS
5.0
EPSS Score
0.04%
Published
2000-07-11
Updated
2008-09-10
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server.
Max CVSS
5.0
EPSS Score
0.50%
Published
2000-07-21
Updated
2008-09-10
WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred.
Max CVSS
5.0
EPSS Score
0.24%
Published
2000-07-21
Updated
2008-09-10
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via commands such as STORE UNIQUE (STOU), STORE (STOR), or APPEND (APPE).
Max CVSS
6.4
EPSS Score
0.50%
Published
2000-07-21
Updated
2008-09-10
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing a STAT command while the LIST command is still executing.
Max CVSS
5.0
EPSS Score
1.16%
Published
2000-07-21
Updated
2017-10-10
Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.
Max CVSS
10.0
EPSS Score
4.53%
Published
1999-10-28
Updated
2008-09-09
17 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!