Jgaa: Security Vulnerabilities
Unspecified vulnerability in War FTP Daemon (warftpd) 1.82, when running as a Windows service, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors related to log messages and the "internal log handler to the Windows Event log."
CVSS Score
10.0
EPSS Score
0.089
Published
2014-04-01
Format string vulnerability in War FTP Daemon (warftpd) 1.82 RC 12 allows remote authenticated users to cause a denial of service (crash) via format string specifiers in a LIST command.
CVSS Score
4.0
EPSS Score
0.107
Published
2014-04-01
War FTP Daemon (WarFTPd) 1.82.00-RC11 allows remote authenticated users to cause a denial of service via a large number of "%s" format strings in (1) CWD, (2) CDUP, (3) DELE, (4) NLST, (5) LIST, (6) SIZE, and possibly other commands. NOTE: it is possible that vector 1 is an off-by-one variant or incomplete fix of CVE-2005-0312.
CVSS Score
4.0
EPSS Score
0.082
Published
2006-11-07
Buffer overflow in WDM.exe in WarFTPD allows remote attackers to execute arbitrary code via unspecified arguments, as demonstrated by the Infigo FTPStress Fuzzer.
CVSS Score
6.4
EPSS Score
0.037
Published
2006-05-04
Buffer overflow in War FTPd 1.6x allows users to cause a denial of service via long MKD and CWD commands.
CVSS Score
5.0
EPSS Score
0.042
Published
2000-02-01
Macros in War FTP 1.70 and 1.67b2 allow local or remote attackers to read arbitrary files or execute commands.
CVSS Score
10.0
EPSS Score
0.025
Published
2000-01-06
War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections.
CVSS Score
5.0
EPSS Score
0.007
Published
1999-12-13
Buffer overflow in War FTP allows remote execution of commands.
CVSS Score
7.5
EPSS Score
0.833
Published
1998-02-01