Total
25 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2004-1643 | 1 Progress | 1 Ws Ftp Server | 2023-12-10 | 5.0 MEDIUM | N/A |
WS_FTP 5.0.2 allows remote authenticated users to cause a denial of service (CPU consumption) via a CD command that contains an invalid path with a "../" sequence. | |||||
CVE-2004-1884 | 2 Ipswitch, Progress | 3 Ws Ftp Pro, Ws Ftp Server, Ws Ftp Server | 2023-12-10 | 7.5 HIGH | N/A |
Ipswitch WS_FTP Server 4.0.2 has a backdoor XXSESS_MGRYY username with a default password, which allows remote attackers to gain access. | |||||
CVE-2004-1885 | 1 Progress | 1 Ws Ftp Server | 2023-12-10 | 7.2 HIGH | N/A |
Ipswitch WS_FTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc options that are handled by iftpmgr.exe. | |||||
CVE-1999-1170 | 2 Ipswitch, Progress | 2 Imail, Ws Ftp Server | 2023-12-10 | 4.6 MEDIUM | N/A |
IPswitch IMail allows local users to gain additional privileges and modify or add mail accounts by setting the "flags" registry key to 1920. | |||||
CVE-2001-1021 | 1 Progress | 1 Ws Ftp Server | 2023-12-10 | 7.5 HIGH | N/A |
Buffer overflows in WS_FTP 2.02 allow remote attackers to execute arbitrary code via long arguments to (1) DELE, (2) MDTM, (3) MLST, (4) MKD, (5) RMD, (6) RNFR, (7) RNTO, (8) SIZE, (9) STAT, (10) XMKD, or (11) XRMD. |