Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ftpd vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2018-13284
Command injection vulnerability in ftpd in Synology Diskstation Manager (DSM) prior to 6.2-23739-1 allows remote authenticated users to execute arbitrary OS commands via the (1) MKD or (2) RMD command.
Synology Diskstation Manager
9
CVSSv2
CVE-2018-13285
Command injection vulnerability in ftpd in Synology Router Manager (SRM) prior to 1.1.7-6941-1 allows remote authenticated users to execute arbitrary OS commands via the (1) MKD or (2) RMD command.
Synology Router Manager
5
CVSSv2
CVE-2001-0681
Buffer overflow in ftpd in QPC QVT/Net 5.0 and QVT/Term 5.0 allows a remote malicious user to cause a denial of service via a long (1) username or (2) password.
Qpc Software Qvt Term 5.0
Qpc Software Qvt Net 5.0
4
CVSSv2
CVE-2006-6915
ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote authenticated users to cause a denial of service (port exhaustion) via unspecified vectors. NOTE: some details were obtained from third party sources.
Ibm Aix 5.2.0
Ibm Aix 5.3.0
7.8
CVSSv2
CVE-2007-2150
BlueArc-FTPD in BlueArc Titan 2x00 devices with firmware 4.2.944b allows remote malicious users to redirect traffic to other sites (aka FTP bounce) via the PORT command, a variant of CVE-1999-0017.
Bluearc Titan 2100
Bluearc Titan 2200
Bluearc Titan 2500
Bluearc Titan
2.1
CVSSv2
CVE-2000-0462
ftpd in NetBSD 1.4.2 does not properly parse entries in /etc/ftpchroot and does not chroot the specified users, which allows those users to access other files outside of their home directory.
Netbsd Netbsd 1.4.2
5
CVSSv2
CVE-2001-0680
Directory traversal vulnerability in ftpd in QPC QVT/Net 4.0 and AVT/Term 5.0 allows a remote malicious user to traverse directories on the web server via a "dot dot" attack in a LIST (ls) command.
Qpc Software Qvt Net 4.0
Qpc Software Qvt Net 5.0
Qpc Software Avt Term 5.0
1 Github repository
5
CVSSv2
CVE-2000-1101
Directory traversal vulnerability in Winsock FTPd (WFTPD) 3.00 and 2.41 with the "Restrict to home directory" option enabled allows local users to escape the home directory via a "/../" string, a variation of the .. (dot dot) attack.
Texas Imperial Software Wftpd 2.41 Rc14
Texas Imperial Software Wftpd 3.0
7.5
CVSSv2
CVE-2002-0910
Buffer overflows in netstd 3.07-17 package allows remote DNS servers to execute arbitrary code via a long FQDN reply, as observed in the utilities (1) linux-ftpd, (2) pcnfsd, (3) tftp, (4) traceroute, or (5) from/to.
Debian Netstd 3.07
6.5
CVSSv2
CVE-2014-0899
ftpd in IBM AIX 7.1.1 before SP10 and 7.1.2 before SP5, when a Workload Partition (aka WPAR) for AIX 5.2 or 5.3 is used, allows remote authenticated users to bypass intended permission settings and modify arbitrary files via FTP commands.
Ibm Aix 7.1.1
Ibm Aix 7.1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »