Acftp: Security Vulnerabilities
acFTP 1.5 allows remote authenticated users to cause a denial of service via a crafted argument to the (1) REST or (2) PBSZ command.
CVSS Score
3.5
EPSS Score
0.035
Published
2006-12-27
acFTP 1.4 allows remote attackers to cause a denial of service (application crash) via a long string with "{" (brace) characters to the USER command.
CVSS Score
5.0
EPSS Score
0.273
Published
2006-05-09
acFTP 1.4 does not properly handle when an invalid password is provided by the user during authentication, which allows remote attackers to hide or misrepresent certain activity from log files and possibly gain privileges.
CVSS Score
10.0
EPSS Score
0.034
Published
2002-12-31