Winftp Server » Winftp Server : Security Vulnerabilities, CVEs,
WinFtp Server 2.0.2 allows remote attackers to cause a denial of service (crash) via long (1) PASV, (2) LIST, (3) USER, (4) PORT, and possibly other commands.
Max CVSS
5.0
EPSS Score
6.35%
Published
2006-12-21
Updated
2017-10-19
Buffer overflow in the Log-SCR function in the "Log to Screen" feature in WinFtp Server 1.6.8 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long request.
Max CVSS
7.5
EPSS Score
15.04%
Published
2005-08-23
Updated
2017-07-11
WinFTP Server 1.6 stores username and password credentials in plaintext in the data\user.wfd file, which allows local users to gain access to the credentials.
Max CVSS
2.1
EPSS Score
0.04%
Published
2004-12-31
Updated
2017-07-11
3 vulnerabilities found