CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2000-0646

WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.6%

CVSS Severity

CVSS v2 Score 5.0

References

http://archives.neohapsis.com/archives/bugtraq/2000-07/0295.html
http://www.securityfocus.com/bid/1506
http://archives.neohapsis.com/archives/bugtraq/2000-07/0295.html
http://www.securityfocus.com/bid/1506

Products affected by CVE-2000-0646

Texas Imperial Software » Wftpd » Version: 2.34

cpe:2.3:a:texas_imperial_software:wftpd:2.34
Texas Imperial Software » Wftpd » Version: 2.4.1

cpe:2.3:a:texas_imperial_software:wftpd:2.4.1
Texas Imperial Software » Wftpd » Version: 2.4.1_rc11

cpe:2.3:a:texas_imperial_software:wftpd:2.4.1_rc11
Texas Imperial Software » Wftpd » Version: 2.40

cpe:2.3:a:texas_imperial_software:wftpd:2.40

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2000-0646

Products

Pricing

Contact Us