Bolintech: Security Vulnerabilities
Heap-based buffer overflow in Dream FTP Server allows remote attackers to execute arbitrary code via a USER command with a large number of format string specifiers, which triggers the overflow during processing of the Server Log.
CVSS Score
7.5
EPSS Score
0.056
Published
2007-01-18
BolinTech Dream FTP Server 1.02 allows remote authenticated users, including anonymous users, to cause a denial of service (application crash) via a certain invalid PORT command.
CVSS Score
4.0
EPSS Score
0.05
Published
2006-12-26
Format string vulnerability in Dream FTP 1.02 allows local users to cause a denial of service (crash) via format string specifiers in the (1) PASS or (2) RETR commands.
CVSS Score
5.0
EPSS Score
0.556
Published
2004-12-31
Format string vulnerability in Dream FTP 1.02 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in the username.
CVSS Score
10.0
EPSS Score
0.081
Published
2004-11-23