Shodan
Vulnerabilities
Vulnerable Software
Texas Imperial Software:  Security Vulnerabilities
CVE-2001-0296
Buffer overflow in WFTPD Pro 3.00 allows remote attackers to execute arbitrary commands via a long CWD command.
CVSS Score
10.0
EPSS Score
0.043
Published
2001-05-03
CVE-2000-1101
Directory traversal vulnerability in Winsock FTPd (WFTPD) 3.00 and 2.41 with the "Restrict to home directory" option enabled allows local users to escape the home directory via a "/../" string, a variation of the .. (dot dot) attack.
CVSS Score
5.0
EPSS Score
0.002
Published
2001-01-09
CVE-2000-0875
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to cause a denial of service by sending a long string of unprintable characters.
CVSS Score
5.0
EPSS Score
0.007
Published
2000-11-14
CVE-2000-0876
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a "%C" command, which generates an error message that includes the pathname.
CVSS Score
5.0
EPSS Score
0.009
Published
2000-11-14
CVE-2000-0644
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing a STAT command while the LIST command is still executing.
CVSS Score
5.0
EPSS Score
0.08
Published
2000-07-21
CVE-2000-0645
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via commands such as STORE UNIQUE (STOU), STORE (STOR), or APPEND (APPE).
CVSS Score
6.4
EPSS Score
0.04
Published
2000-07-21
CVE-2000-0646
WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred.
CVSS Score
5.0
EPSS Score
0.007
Published
2000-07-21
CVE-2000-0647
WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server.
CVSS Score
5.0
EPSS Score
0.045
Published
2000-07-21
CVE-2000-0648
WFTPD and WFTPD Pro 2.41 allows local users to cause a denial of service by executing the RENAME TO (RNTO) command before a RENAME FROM (RNFR) command.
CVSS Score
5.0
EPSS Score
0.014
Published
2000-07-11
CVE-1999-0950
Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories.
CVSS Score
10.0
EPSS Score
0.051
Published
1999-10-28


Products
Pricing
Contact Us

Shodan ® - All rights reserved