Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ipswitch ws ftp server vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2019-12144
An issue exists in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 prior to 8.6.1. Attackers have the ability to abuse a path traversal vulnerability using the SCP protocol. Attackers who leverage this flaw could also obtain remote code execution by crafting a payload th...
Ipswitch Ws Ftp Server
6.4
CVSSv2
CVE-2019-12146
A Directory Traversal issue exists in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 prior to 8.6.1. Attackers have the ability to abuse a flaw in the SCP listener by crafting strings using specific patterns to write files and create directories outside of their authori...
Ipswitch Ws Ftp Server
6.8
CVSSv2
CVE-2007-0666
Ipswitch WS_FTP Server 5.04 allows FTP site administrators to execute arbitrary code on the system via a long input string to the (1) iFTPAddU or (2) iFTPAddH file, or to a (3) edition module.
Ipswitch Ws Ftp Server 5.04
7.5
CVSSv2
CVE-2006-4974
Buffer overflow in Ipswitch WS_FTP Limited Edition (LE) 5.08 allows remote FTP servers to execute arbitrary code via a long response to a PASV command.
Ipswitch Ws Ftp Server 5.08 Limited Edition
1 EDB exploit
NA
CVE-2022-36967
In Progress WS_FTP Server prior to version 8.7.3, multiple reflected cross-site scripting (XSS) vulnerabilities exist in the administrative web interface. It is possible for a remote malicious user to inject arbitrary JavaScript into a WS_FTP administrator's web session. Thi...
Progress Ipswitch Ws Ftp Server
NA
CVE-2022-36968
In Progress WS_FTP Server prior to version 8.7.3, forms within the administrative interface did not include a nonce to mitigate the risk of cross-site request forgery (CSRF) attacks.
Progress Ipswitch Ws Ftp Server
5
CVSSv2
CVE-2004-1135
Multiple buffer overflows in WS_FTP Server 5.03 2004.10.14 allow remote malicious users to cause a denial of service (service crash) via long (1) SITE, (2) XMKD, (3) MKD, and (4) RNFR commands.
Ipswitch Ws Ftp Server 5.03
2 EDB exploits
4.6
CVSSv2
CVE-1999-1171
IPswitch WS_FTP allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920.
Ipswitch Imail 5.0
Progress Ws Ftp Server 1.0.1.e
Progress Ws Ftp Server 1.0.2.e
1 EDB exploit
4.6
CVSSv2
CVE-1999-1170
IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920.
Ipswitch Imail 5.0
Progress Ws Ftp Server 1.0.1.e
Progress Ws Ftp Server 1.0.2.e
1 EDB exploit
7.8
CVSSv2
CVE-2007-3823
The Logging Server (Logsrv.exe) in IPSwitch WS_FTP 7.5.29.0 allows remote malicious users to cause a denial of service (daemon crash) by sending a crafted packet containing a long string to port 5151/udp.
Ipswitch Ws Ftp 7.5.29.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »