Texas Imperial Software: >> Wftpd Security Vulnerabilities
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to cause a denial of service by sending a long string of unprintable characters.
CVSS Score
5.0
EPSS Score
0.007
Published
2000-11-14
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a "%C" command, which generates an error message that includes the pathname.
CVSS Score
5.0
EPSS Score
0.009
Published
2000-11-14
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing a STAT command while the LIST command is still executing.
CVSS Score
5.0
EPSS Score
0.08
Published
2000-07-21
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via commands such as STORE UNIQUE (STOU), STORE (STOR), or APPEND (APPE).
CVSS Score
6.4
EPSS Score
0.04
Published
2000-07-21
WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred.
CVSS Score
5.0
EPSS Score
0.007
Published
2000-07-21
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server.
CVSS Score
5.0
EPSS Score
0.045
Published
2000-07-21
WFTPD and WFTPD Pro 2.41 allows local users to cause a denial of service by executing the RENAME TO (RNTO) command before a RENAME FROM (RNFR) command.
CVSS Score
5.0
EPSS Score
0.014
Published
2000-07-11
Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.
CVSS Score
10.0
EPSS Score
0.051
Published
1999-10-28
Page 2