Steve Poulsen: >> Guildftpd Security Vulnerabilities
Buffer overflow in GuildFTPd 0.999.13 allows remote attackers to have an unknown impact, possibly code execution related to input containing "globbing chars."
CVSS Score
7.5
EPSS Score
0.041
Published
2006-10-03
GuildFTPd 0.999 allows remote attackers to cause a denial of service (crash) via a GET request for MS-DOS device names such as lpt1.
CVSS Score
5.0
EPSS Score
0.013
Published
2003-12-31
Directory traversal vulnerability in GuildFTPd 0.9.7 allows attackers to list or read arbitrary files and directories via a .. in (1) LS or (2) GET.
CVSS Score
5.0
EPSS Score
0.009
Published
2001-10-18
GuildFTPd 0.9.7 stores user names and passwords in plaintext in the default.usr file, which allows local users to gain privileges as other FTP users by reading the file.
CVSS Score
4.6
EPSS Score
0.001
Published
2001-10-18
Memory leak in GuildFTPd Server 0.97 allows remote attackers to cause a denial of service via a request containing a null character.
CVSS Score
5.0
EPSS Score
0.007
Published
2001-10-18
Buffer overflow in GuildFTPd Server 0.97 allows remote attacker to execute arbitrary code via a long SITE command.
CVSS Score
7.5
EPSS Score
0.032
Published
2001-10-18
Guild FTPd allows remote attackers to determine the existence of files outside the FTP root via a .. (dot dot) attack, which provides different error messages depending on whether the file exists or not.
CVSS Score
7.5
EPSS Score
0.045
Published
2000-07-08