Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ftpd vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2001-0295
Directory traversal vulnerability in War FTP 1.67.04 allows remote malicious users to list directory contents and possibly read files via a "dir *./../.." command.
Jarle Aase War Ftpd 1.67b04
1 EDB exploit
5
CVSSv2
CVE-2001-1031
Directory traversal vulnerability in Meteor FTP 1.0 allows remote malicious users to read arbitrary files via (1) a .. (dot dot) in the ls/LIST command, or (2) a ... in the cd/CWD command.
Charles Clark Meteor Ftpd 1.0
10
CVSSv2
CVE-2004-0185
Buffer overflow in the skey_challenge function in ftpd.c for wu-ftp daemon (wu-ftpd) 2.6.2 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a s/key (SKEY) request with a long name.
Washington University Wu-ftpd 2.6.2
7.8
CVSSv2
CVE-2003-1329
ftpd.c in wu-ftpd 2.6.2, when running on "operating systems that only allow one non-connected socket bound to the same local address," does not close failed connections, which allows remote malicious users to cause a denial of service.
Washington University Wu-ftpd 2.6.2
7.6
CVSSv2
CVE-1999-0955
Race condition in wu-ftpd and BSDI ftpd allows remote malicious users to gain root access via the SITE EXEC command.
Washington University Wu-ftpd 2.4.1
5
CVSSv2
CVE-2003-1349
Directory traversal vulnerability in NITE ftp-server (NiteServer) 1.83 allows remote malicious users to list arbitrary directories via a "\.." (backslash dot dot) in the CD (CWD) command.
Thomas Krebs Niteserver Ftpd 1.83
7.5
CVSSv2
CVE-1999-0202
The GNU tar command, when used in FTP sessions, may allow an malicious user to execute arbitrary commands.
University Of Washington Wu-ftpd 2.4.1
10
CVSSv2
CVE-2003-0466
Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow malicious users to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 up to and including 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buff...
Wuftpd Wu-ftpd
Redhat Wu Ftpd 2.6.1-16
Apple Mac Os X Server 10.2.6
Apple Mac Os X 10.2.6
Sun Solaris 9.0
Freebsd Freebsd
Netbsd Netbsd
Openbsd Openbsd
5 EDB exploits
5
CVSSv2
CVE-2019-20176
In Pure-FTPd 1.0.49, a stack exhaustion issue exists in the listdir function in ls.c.
Pureftpd Pure-ftpd 1.0.49
Fedoraproject Fedora 30
Fedoraproject Fedora 31
7.5
CVSSv2
CVE-2017-12170
Downstream version 1.0.46-1 of pure-ftpd as shipped in Fedora was vulnerable to packaging error due to which the original configuration was ignored after update and service started running with default configuration. This has security implications because of overriding security-r...
Pureftpd Pure-ftpd 1.0.46-1
Fedoraproject Fedora 26
Fedoraproject Fedora 27
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »