Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ftpd vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-0997
wu-ftp with FTP conversion enabled allows an malicious user to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.
Millenux Gmbh Anonftp 2.8.1
University Of Washington Wu-ftpd 2.5.0
University Of Washington Wu-ftpd 2.6.0
University Of Washington Wu-ftpd 2.4.2
Redhat Linux 6.1
Redhat Linux 5.2
Redhat Linux 6.0
1 EDB exploit
7.5
CVSSv3
CVE-2023-45198
ftpd before "NetBSD-ftpd 20230930" can leak information about the host filesystem before authentication via an MLSD or MLST command. tnftpd (the portable version of NetBSD ftpd) prior to 20231001 is also vulnerable.
Netbsd Tnftpd
Netbsd Ftpd
NA
CVE-1999-0076
Buffer overflow in wu-ftp from PASV command causes a core dump.
Washington University Wu-ftpd
NA
CVE-1999-0081
wu-ftp allows files to be overwritten via the rnfr command.
Washington University Wu-ftpd
NA
CVE-2006-7007
Buffer overflow in Tiny FTPd 1.4 and previous versions allows remote malicious users to cause a denial of service (daemon crash) via a long USER command, a different vector than CVE-2000-0133.
H. Nomura Tiny Ftpd
1 EDB exploit
7.5
CVSSv3
CVE-2020-35359
Pure-FTPd 1.0.48 allows remote malicious users to prevent legitimate server use by making enough connections to exceed the connection limit.
Pureftpd Pure-ftpd 1.0.48
NA
CVE-1999-0156
wu-ftpd FTP daemon allows any user and password combination.
Washington University Wu-ftpd
NA
CVE-1999-0075
PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password.
Washington University Wu-ftpd
NA
CVE-2001-0295
Directory traversal vulnerability in War FTP 1.67.04 allows remote malicious users to list directory contents and possibly read files via a "dir *./../.." command.
Jarle Aase War Ftpd 1.67b04
1 EDB exploit
NA
CVE-2003-1329
ftpd.c in wu-ftpd 2.6.2, when running on "operating systems that only allow one non-connected socket bound to the same local address," does not close failed connections, which allows remote malicious users to cause a denial of service.
Washington University Wu-ftpd 2.6.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »