VYPR
Unrated severityNVD Advisory· Published Jul 21, 2000· Updated Jun 16, 2026

CVE-2000-0646

CVE-2000-0646

Description

WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred.

Affected products

5
  • cpe:2.3:a:texas_imperial_software:wftpd:2.34:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:texas_imperial_software:wftpd:2.34:*:*:*:*:*:*:*
    • cpe:2.3:a:texas_imperial_software:wftpd:2.40:*:*:*:*:*:*:*
    • cpe:2.3:a:texas_imperial_software:wftpd:2.4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:texas_imperial_software:wftpd:2.4.1_rc11:*:*:*:*:*:*:*
  • WFTPD/WFTPDllm-fuzzy
    Range: = 2.41

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.