Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
core ftp vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2007-5300
Off-by-one error in the do_login_loop function in libwzd-core/wzd_login.c in wzdftpd 0.8.0, 0.8.2, and possibly other versions allows remote malicious users to cause a denial of service (daemon crash) via a long USER command that triggers a stack-based buffer overflow. NOTE: some...
Wzdftpd Wzdftpd 0.8.0
Wzdftpd Wzdftpd 0.8.2
1 EDB exploit
5
CVSSv2
CVE-2007-0247
squid/src/ftp.c in Squid prior to 2.6.STABLE7 allows remote FTP servers to cause a denial of service (core dump) via crafted FTP directory listing responses, possibly related to the (1) ftpListingFinish and (2) ftpHtmlifyListEntry functions.
Squid Squid 2.6.stable6
Squid Squid 2.6.stable5
Squid Squid 2.6.stable4
Squid Squid 2.6.stable1
Squid Squid 2.6.stable3
Squid Squid 2.6.stable2
1 EDB exploit
5
CVSSv2
CVE-2006-5464
Multiple unspecified vulnerabilities in the layout engine in Mozilla Firefox prior to 1.5.0.8, Thunderbird prior to 1.5.0.8, and SeaMonkey prior to 1.0.6 allow remote malicious users to cause a denial of service (crash) via unspecified vectors.
Mozilla Firefox 1.5.0.2
Mozilla Firefox 1.5.0.3
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.0.1
Mozilla Thunderbird 1.5
Mozilla Thunderbird 1.5.0.1
Mozilla Firefox 1.5.0.4
Mozilla Firefox 1.5.0.5
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0.3
Mozilla Thunderbird 1.5.0.2
Mozilla Thunderbird 1.5.0.3
Mozilla Firefox 1.5
Mozilla Firefox 1.5.0.1
Mozilla Thunderbird 1.5.0.7
Mozilla Firefox 1.5.0.6
Mozilla Firefox 1.5.0.7
Mozilla Seamonkey 1.0.4
Mozilla Seamonkey 1.0.5
Mozilla Thunderbird 1.5.0.4
Mozilla Thunderbird 1.5.0.6
7.5
CVSSv2
CVE-2005-0644
Buffer overflow in McAfee Scan Engine 4320 with DAT version prior to 4436 allows remote malicious users to execute arbitrary code via a malformed LHA file with a type 2 header file name field, a variant of CVE-2005-0643.
Mcafee Antivirus Engine 4.3.20
10
CVSSv2
CVE-2004-0989
Multiple buffer overflows in libXML 2.6.12 and 2.6.13 (libxml2), and possibly other versions, may allow remote malicious users to execute arbitrary code via (1) a long FTP URL that is not properly handled by the xmlNanoFTPScanURL function, (2) a long proxy URL containing FTP data...
Xmlsoft Libxml 1.8.17
Xmlsoft Libxml2 2.5.11
Xmlsoft Libxml2 2.6.9
Xmlstarlet Command Line Xml Toolkit 0.9.1
Xmlsoft Libxml2 2.6.11
Xmlsoft Libxml2 2.6.12
Xmlsoft Libxml2 2.6.13
Xmlsoft Libxml2 2.6.14
Xmlsoft Libxml2 2.6.6
Xmlsoft Libxml2 2.6.7
Xmlsoft Libxml2 2.6.8
Redhat Fedora Core Core 2.0
Trustix Secure Linux 2.0
Trustix Secure Linux 2.1
Ubuntu Ubuntu Linux 4.1
1 EDB exploit
7.5
CVSSv2
CVE-2002-0068
Squid 2.4 STABLE3 and previous versions allows remote malicious users to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which exceed the buffer when Squid URL-escapes the characters.
Squid Squid
Redhat Linux 6.2
Redhat Linux 7.1
Redhat Linux 7.2
Redhat Linux 7.0
1 EDB exploit
7.5
CVSSv2
CVE-2001-0550
wu-ftpd 2.6.1 allows remote malicious users to execute arbitrary commands via a "~{" argument to commands such as CWD, which is not properly handled by the glob function (ftpglob).
David Madore Ftpd-bsd 0.3.3
Washington University Wu-ftpd 2.5.0
Washington University Wu-ftpd 2.6.0
Washington University Wu-ftpd 2.6.1
David Madore Ftpd-bsd 0.3.2
2 EDB exploits
1 Github repository
6.4
CVSSv2
CVE-2001-0421
FTP server in Solaris 8 and previous versions allows local and remote malicious users to cause a core dump in the root directory, possibly with world-readable permissions, by providing a valid username with an invalid password followed by a CWD ~ command, which could release sens...
Sun Solaris 2.6
Sun Sunos
1 EDB exploit
10
CVSSv2
CVE-1999-1293
mod_proxy in Apache 1.2.5 and previous versions allows remote malicious users to cause a denial of service via malformed FTP commands, which causes Apache to dump core.
Apache Http Server
5
CVSSv2
CVE-1999-0076
Buffer overflow in wu-ftp from PASV command causes a core dump.
Washington University Wu-ftpd
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
firewall
CVE-2024-35649
stored XSS
CVE-2022-28654
CVE-2020-35153
CVE-2024-27348
CVE-2022-28652
local users
CVE-2017-3506
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5