Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ftpd vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4247
ftpd in OpenBSD 4.3, FreeBSD 7.0, NetBSD 4.0, Solaris, and possibly other operating systems interprets long commands from an FTP client as multiple commands, which allows remote malicious users to conduct cross-site request forgery (CSRF) attacks and execute arbitrary FTP command...
Openbsd Openbsd 4.3
Freebsd Freebsd 7.0
Netbsd Netbsd 4.0
1 EDB exploit
NA
CVE-2008-1668
ftpd.c in (1) wu-ftpd 2.4.2 and (2) ftpd in HP HP-UX B.11.11 assigns uid 0 to the FTP client in certain operating-system misconfigurations in which PAM authentication can succeed even though no passwd entry is available for a user, which allows remote malicious users to gain priv...
Hp Hp-ux 11.11
NA
CVE-2007-6263
The dataconn function in ftpd.c in netkit ftpd (netkit-ftpd) 0.17, when certain modifications to support SSL have been introduced, calls fclose on an uninitialized file stream, which allows remote malicious users to cause a denial of service (daemon crash) and possibly have unspe...
Netkit-ftp Netkit Ftp 0.17
NA
CVE-2007-5769
Double free vulnerability in the getreply function in ftp.c in netkit ftp (netkit-ftp) 0.17 20040614 and later allows remote FTP servers to cause a denial of service (application crash) and possibly have unspecified other impact via some types of FTP protocol behavior. NOTE: the ...
Netkit-ftp Netkit Ftp 0.17
NA
CVE-2007-5939
The gss_userok function in appl/ftp/ftpd/gss_userok.c in Heimdal 0.7.2 does not allocate memory for the ticketfile pointer before calling free, which allows remote malicious users to have an unknown impact via an invalid username. NOTE: the vulnerability was originally reported f...
Heimdal Heimdal 0.7.2
NA
CVE-2007-5894
The reply function in ftpd.c in the gssftp ftpd in MIT Kerberos 5 (krb5) does not initialize the length variable when auth_type has a certain value, which has unknown impact and remote authenticated attack vectors. NOTE: the original disclosure misidentifies the conditions under ...
Mit Kerberos 5 -
NA
CVE-2007-2150
BlueArc-FTPD in BlueArc Titan 2x00 devices with firmware 4.2.944b allows remote malicious users to redirect traffic to other sites (aka FTP bounce) via the PORT command, a variant of CVE-1999-0017.
Bluearc Titan 2100
Bluearc Titan 2200
Bluearc Titan 2500
Bluearc Titan
NA
CVE-2006-7094
ftpd, as used by Gentoo and Debian Linux, sets the gid to the effective uid instead of the effective group id before executing /bin/ls, which allows remote authenticated users to list arbitrary directories with the privileges of gid 0 and possibly enable additional attack vectors...
Ftpd Ftpd
NA
CVE-2006-7007
Buffer overflow in Tiny FTPd 1.4 and previous versions allows remote malicious users to cause a denial of service (daemon crash) via a long USER command, a different vector than CVE-2000-0133.
H. Nomura Tiny Ftpd
1 EDB exploit
NA
CVE-2006-6914
Unspecified vulnerability in ftpd in IBM AIX 5.2.0 and 5.3.0 allows remote malicious users to obtain sensitive information, including passwords, via unspecified vectors.
Ibm Aix 5.2.0
Ibm Aix 5.3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »