Ipswitch: >> Ws Ftp Server >> 4.01 Security Vulnerabilities
Multiple buffer overflows in Ipswitch WS_FTP Server 5.05 before Hotfix 1 allow remote authenticated users to execute arbitrary code via long (1) XCRC, (2) XSHA1, or (3) XMD5 commands.
CVSS Score
6.5
EPSS Score
0.892
Published
2006-09-19
Ipswitch WS_FTP Server 4.0.2 allows remote attackers to cause a denial of service (disk consumption) and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file.
CVSS Score
5.0
EPSS Score
0.034
Published
2004-12-31
Ipswitch WS_FTP Server 4.0.2 has a backdoor XXSESS_MGRYY username with a default password, which allows remote attackers to gain access.
CVSS Score
7.5
EPSS Score
0.003
Published
2004-03-23
Multiple buffer overflows in WS_FTP 3 and 4 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via long (1) APPE (append) or (2) STAT (status) arguments.
CVSS Score
7.5
EPSS Score
0.832
Published
2003-09-22