DataWizard Technologies FtpXQ FTP Server 3.0 allows remote authenticated users to cause a denial of service (crash) via a long ABOR command.
Max CVSS
4.0
EPSS Score
1.58%
Published
2009-10-05
Updated
2017-09-19
FtpXQ Server 3.0.1 installs with two default testing accounts, which allows remote attackers to read or write arbitrary files via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Max CVSS
6.4
EPSS Score
0.28%
Published
2006-10-27
Updated
2008-09-05
FtpXQ Server 3.0.1 allows remote attackers to cause a denial of service (CPU exhaustion) via a long MKD command.
Max CVSS
5.0
EPSS Score
10.92%
Published
2006-10-27
Updated
2017-07-20
Buffer overflow in FtpXQ 2.5 allows remote attackers to cause a denial of service (crash) via a MKD command with a long directory name.
Max CVSS
5.0
EPSS Score
0.28%
Published
2002-12-31
Updated
2008-09-05
The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and password, which allows remote attackers to read and write arbitrary files in the root folder.
Max CVSS
6.4
EPSS Score
0.29%
Published
2001-12-18
Updated
2008-09-10
Directory traversal in DataWizard WebXQ server 1.204 allows remote attackers to view files outside of the web root via a .. (dot dot) attack.
Max CVSS
5.0
EPSS Score
0.86%
Published
2001-06-27
Updated
2017-10-10
Directory traversal vulnerability in FtpXQ FTP server 2.0.93 allows remote attackers to read arbitrary files via a .. (dot dot) in the GET command.
Max CVSS
5.0
EPSS Score
5.19%
Published
2001-05-03
Updated
2008-09-05
7 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!