Coreftp: >> Core Ftp >> 2.2 Security Vulnerabilities
Buffer overflow in Core FTP LE v2.2 allows local attackers to cause a denial or service (crash) via a long string in the Setup->Users->Username editbox.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-04-02
Core FTP LE version 2.2 Build 1921 is prone to a buffer overflow vulnerability that may result in a DoS or remote code execution via a PASV response.
CVSS Score
9.8
EPSS Score
0.165
Published
2018-07-05
Multiple heap-based buffer overflows in the client in Core FTP LE 2.2 build 1798 allow remote FTP servers to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in a reply to a (1) USER, (2) PASS, (3) PASV, (4) SYST, (5) PWD, or (6) CDUP command.
CVSS Score
5.0
EPSS Score
0.224
Published
2014-06-25
Stack-based buffer overflow in Core FTP before 2.2 build 1785 allows remote FTP servers to execute arbitrary code via a crafted directory name in a CWD command reply.
CVSS Score
9.3
EPSS Score
0.021
Published
2014-04-04