Argosoft: >> Ftp Server >> 1.4.1.8 Security Vulnerabilities
Buffer overflow in ArgoSoft FTP Server 1.4.3.6 allows remote attackers to execute arbitrary code via Unicode in the RNTO command, as demonstrated by the Infigo FTPStress Fuzzer.
CVSS Score
6.4
EPSS Score
0.05
Published
2006-05-04
ArGoSoft FTP Server before 1.4.2.8 allows remote attackers to read arbitrary files via shortcut (.LNK) files in the SITE COPY command, a different vulnerability than CVE-2005-0519.
CVSS Score
10.0
EPSS Score
0.012
Published
2005-02-23
ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (.LNK) file, using SITE UNZIP to extract the .LNK file onto the server, then accessing the file, a different vulnerability than CVE-2005-0520.
CVSS Score
10.0
EPSS Score
0.012
Published
2005-02-18
ArGoSoft FTP 1.4.2.4 and earlier does not limit the number of times that a bad password can be entered, which makes it easier for remote attackers to guess passwords via a brute force attack.
CVSS Score
7.5
EPSS Score
0.006
Published
2004-12-31