Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ftpd vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-1999-0997
wu-ftp with FTP conversion enabled allows an malicious user to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.
Millenux Gmbh Anonftp 2.8.1
University Of Washington Wu-ftpd 2.5.0
University Of Washington Wu-ftpd 2.6.0
University Of Washington Wu-ftpd 2.4.2
Redhat Linux 6.1
Redhat Linux 5.2
Redhat Linux 6.0
1 EDB exploit
5
CVSSv2
CVE-1999-0075
PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password.
Washington University Wu-ftpd
5
CVSSv2
CVE-1999-0081
wu-ftp allows files to be overwritten via the rnfr command.
Washington University Wu-ftpd
5
CVSSv2
CVE-2020-35359
Pure-FTPd 1.0.48 allows remote malicious users to prevent legitimate server use by making enough connections to exceed the connection limit.
Pureftpd Pure-ftpd 1.0.48
5
CVSSv2
CVE-1999-0076
Buffer overflow in wu-ftp from PASV command causes a core dump.
Washington University Wu-ftpd
NA
CVE-2023-45198
ftpd before "NetBSD-ftpd 20230930" can leak information about the host filesystem before authentication via an MLSD or MLST command. tnftpd (the portable version of NetBSD ftpd) prior to 20231001 is also vulnerable.
Netbsd Tnftpd
Netbsd Ftpd
4.6
CVSSv2
CVE-1999-0156
wu-ftpd FTP daemon allows any user and password combination.
Washington University Wu-ftpd
7.8
CVSSv2
CVE-2006-7007
Buffer overflow in Tiny FTPd 1.4 and previous versions allows remote malicious users to cause a denial of service (daemon crash) via a long USER command, a different vector than CVE-2000-0133.
H. Nomura Tiny Ftpd
1 EDB exploit
7.6
CVSSv2
CVE-1999-0955
Race condition in wu-ftpd and BSDI ftpd allows remote malicious users to gain root access via the SITE EXEC command.
Washington University Wu-ftpd 2.4.1
5
CVSSv2
CVE-2001-0295
Directory traversal vulnerability in War FTP 1.67.04 allows remote malicious users to list directory contents and possibly read files via a "dir *./../.." command.
Jarle Aase War Ftpd 1.67b04
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »