Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pasv vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-5666
WinFTP FTP Server 2.3.0, when passive (aka PASV) mode is used, allows remote authenticated users to cause a denial of service via a sequence of FTP sessions that include an invalid "NLST -1" command.
Wftpserver Winftp Ftp Server 2.3.0
2 EDB exploits
3.7
CVSSv3
CVE-2020-8284
A malicious server can use the FTP PASV response to trick curl 7.73.0 and previous versions into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing p...
Haxx Curl
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Netapp Clustered Data Ontap -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Hci Storage Node -
Netapp Hci Bootstrap Os -
Apple Mac Os X
Apple Mac Os X 10.14.6
Apple Mac Os X 10.15.7
Apple Macos 11.0.1
Apple Macos 11.1
Apple Macos 11.2
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Communications Billing And Revenue Management 12.0.0.3.0
Oracle Essbase 21.2
Oracle Communications Cloud Native Core Policy 1.14.0
Fujitsu M10-1 Firmware
Fujitsu M10-4 Firmware
2 Github repositories
NA
CVE-1999-0075
PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password.
Washington University Wu-ftpd
7.5
CVSSv3
CVE-2020-8416
IKTeam BearFTP prior to 0.2.0 allows remote malicious users to achieve denial of service via a large volume of connections to the PASV mode port.
Iktm Bearftp
NA
CVE-2002-0221
Etype Eserv 2.97 allows remote malicious users to cause a denial of service (resource exhaustion) via a large number of PASV commands that consume ports 1024 through 5000, which prevents the server from accepting valid PASV.
Etype Eserv 2.97
NA
CVE-2002-1978
IPFilter 3.1.1 up to and including 3.4.28 allows remote malicious users to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates a response that contains the string, causing IPFilter to treat the response as if...
Darren Reed Ipfilter 3.3.9
Darren Reed Ipfilter 3.2.8
Darren Reed Ipfilter 3.2.7
Darren Reed Ipfilter 3.3.21
Darren Reed Ipfilter 3.1.4
Darren Reed Ipfilter 3.3.7
Darren Reed Ipfilter 3.3.12
Darren Reed Ipfilter 3.3.17
Darren Reed Ipfilter 3.1.6
Darren Reed Ipfilter 3.3.6
Darren Reed Ipfilter 3.4.21
Darren Reed Ipfilter 3.3.15
Darren Reed Ipfilter 3.3.16
Darren Reed Ipfilter 3.3.13
Darren Reed Ipfilter 3.3.10
Darren Reed Ipfilter 3.3.1
Darren Reed Ipfilter 3.4.11
Darren Reed Ipfilter 3.2.5
Darren Reed Ipfilter 3.2.15
Darren Reed Ipfilter 3.3.14
Darren Reed Ipfilter 3.2.18
Darren Reed Ipfilter 3.1.2
NA
CVE-1999-0076
Buffer overflow in wu-ftp from PASV command causes a core dump.
Washington University Wu-ftpd
NA
CVE-2002-1979
WatchGuard SOHO products running firmware 5.1.6 and previous versions, and Vclass/RSSA using 3.2 SP1 and previous versions, allows remote malicious users to bypass firewall rules by sending a PASV command string as the argument of another command to an FTP server, which generates...
Watchguard Legacy Rssa
Watchguard Soho
Watchguard Vclass
NA
CVE-2001-0827
Cerberus FTP server 1.0 - 1.5 allows remote malicious users to cause a denial of service (crash) via a large number of "PASV" requests.
Grant Averett Ceberus Ftp Server 1.1
Grant Averett Ceberus Ftp Server 1.0
Grant Averett Ceberus Ftp Server 1.22
Grant Averett Ceberus Ftp Server 1.5
Grant Averett Ceberus Ftp Server 1.2
Grant Averett Ceberus Ftp Server 1.01
Grant Averett Ceberus Ftp Server 1.3
NA
CVE-1999-0079
Remote attackers can cause a denial of service in FTP by issuing multiple PASV commands, causing the server to run out of available ports.
Bisonware Bisonware Ftp Server 3.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »