Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ftpd ftpd vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2001-1031
Directory traversal vulnerability in Meteor FTP 1.0 allows remote malicious users to read arbitrary files via (1) a .. (dot dot) in the ls/LIST command, or (2) a ... in the cd/CWD command.
Charles Clark Meteor Ftpd 1.0
7.6
CVSSv2
CVE-1999-0955
Race condition in wu-ftpd and BSDI ftpd allows remote malicious users to gain root access via the SITE EXEC command.
Washington University Wu-ftpd 2.4.1
10
CVSSv2
CVE-1999-0080
Certain configurations of wu-ftp FTP server 2.4 use a _PATH_EXECPATH setting to a directory with dangerous commands, such as /bin, which allows remote authenticated users to gain root access via the "site exec" command.
Washington University Wu-ftpd 2.4
5
CVSSv2
CVE-2001-0295
Directory traversal vulnerability in War FTP 1.67.04 allows remote malicious users to list directory contents and possibly read files via a "dir *./../.." command.
Jarle Aase War Ftpd 1.67b04
1 EDB exploit
5
CVSSv2
CVE-1999-1326
wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR (abort file transfer) command is executed during a file transfer, which causes a signal to be handled incorrectly and allows local and possibly remote malicious users to read arbitrary files.
Washington University Wu-ftpd 2.4
5
CVSSv2
CVE-2003-1349
Directory traversal vulnerability in NITE ftp-server (NiteServer) 1.83 allows remote malicious users to list arbitrary directories via a "\.." (backslash dot dot) in the CD (CWD) command.
Thomas Krebs Niteserver Ftpd 1.83
7.5
CVSSv2
CVE-1999-0202
The GNU tar command, when used in FTP sessions, may allow an malicious user to execute arbitrary commands.
University Of Washington Wu-ftpd 2.4.1
10
CVSSv2
CVE-2003-0466
Off-by-one error in the fb_realpath() function, as derived from the realpath function in BSD, may allow malicious users to execute arbitrary code, as demonstrated in wu-ftpd 2.5.0 up to and including 2.6.2 via commands that cause pathnames of length MAXPATHLEN+1 to trigger a buff...
Wuftpd Wu-ftpd
Redhat Wu Ftpd 2.6.1-16
Apple Mac Os X Server 10.2.6
Apple Mac Os X 10.2.6
Sun Solaris 9.0
Freebsd Freebsd
Netbsd Netbsd
Openbsd Openbsd
5 EDB exploits
5
CVSSv2
CVE-2019-20176
In Pure-FTPd 1.0.49, a stack exhaustion issue exists in the listdir function in ls.c.
Pureftpd Pure-ftpd 1.0.49
Fedoraproject Fedora 30
Fedoraproject Fedora 31
7.5
CVSSv2
CVE-2017-12170
Downstream version 1.0.46-1 of pure-ftpd as shipped in Fedora was vulnerable to packaging error due to which the original configuration was ignored after update and service started running with default configuration. This has security implications because of overriding security-r...
Pureftpd Pure-ftpd 1.0.46-1
Fedoraproject Fedora 27
Fedoraproject Fedora 26
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »