Broker FTP Server
by Transsoft
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-1042 | Hig | 0.49 | 7.5 | 0.03 | Jul 2, 2001 | Transsoft Broker 5.9.5.0 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) file that points to the target file. | ||
| CVE-2000-1116 | 0.04 | — | 0.08 | Jan 9, 2001 | Buffer overflow in TransSoft Broker FTP Server before 4.3.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long command. | |||
| CVE-2004-0295 | 0.03 | — | 0.03 | Nov 23, 2004 | TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remote attackers to cause a denial of service (CPU consumption) via an open idle connection. | |||
| CVE-2001-0688 | 0.03 | — | 0.05 | Sep 20, 2001 | Broker FTP Server 5.9.5.0 allows a remote attacker to cause a denial of service by repeatedly issuing an invalid CD or CWD ("CD . .") command. | |||
| CVE-2004-0296 | 0.00 | — | 0.02 | Nov 23, 2004 | TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remote attackers to cause a TsFtpSrv.exe to exit with an exception by opening and immediately closing a connection. | |||
| CVE-2002-0405 | 0.00 | — | 0.05 | Jul 26, 2002 | Buffer overflow in Transsoft Broker FTP Server 5.0 evaluation allows remote attackers to cause a denial of service and possibly execute arbitrary code via a CWD command with a large number of . (dot) characters. | |||
| CVE-2001-0687 | 0.00 | — | 0.02 | Sep 20, 2001 | Broker FTP server 5.9.5 for Windows NT and 9x allows a remote attacker to retrieve privileged web server system information by (1) issuing a CD command (CD C:) followed by the LS command, (2) specifying arbitrary paths in the UNC format (\\computername\sharename). | |||
| CVE-2001-0450 | 0.00 | — | 0.02 | Jun 27, 2001 | Directory traversal vulnerability in Transsoft FTP Broker before 5.5 allows attackers to (1) delete arbitrary files via DELETE, or (2) list arbitrary directories via LIST, via a .. (dot dot) in the file name. |
- risk 0.49cvss 7.5epss 0.03
Transsoft Broker 5.9.5.0 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) file that points to the target file.
- CVE-2000-1116Jan 9, 2001risk 0.04cvss —epss 0.08
Buffer overflow in TransSoft Broker FTP Server before 4.3.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long command.
- CVE-2004-0295Nov 23, 2004risk 0.03cvss —epss 0.03
TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remote attackers to cause a denial of service (CPU consumption) via an open idle connection.
- CVE-2001-0688Sep 20, 2001risk 0.03cvss —epss 0.05
Broker FTP Server 5.9.5.0 allows a remote attacker to cause a denial of service by repeatedly issuing an invalid CD or CWD ("CD . .") command.
- CVE-2004-0296Nov 23, 2004risk 0.00cvss —epss 0.02
TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remote attackers to cause a TsFtpSrv.exe to exit with an exception by opening and immediately closing a connection.
- CVE-2002-0405Jul 26, 2002risk 0.00cvss —epss 0.05
Buffer overflow in Transsoft Broker FTP Server 5.0 evaluation allows remote attackers to cause a denial of service and possibly execute arbitrary code via a CWD command with a large number of . (dot) characters.
- CVE-2001-0687Sep 20, 2001risk 0.00cvss —epss 0.02
Broker FTP server 5.9.5 for Windows NT and 9x allows a remote attacker to retrieve privileged web server system information by (1) issuing a CD command (CD C:) followed by the LS command, (2) specifying arbitrary paths in the UNC format (\\computername\sharename).
- CVE-2001-0450Jun 27, 2001risk 0.00cvss —epss 0.02
Directory traversal vulnerability in Transsoft FTP Broker before 5.5 allows attackers to (1) delete arbitrary files via DELETE, or (2) list arbitrary directories via LIST, via a .. (dot dot) in the file name.