Ftpxq
by Datawizard
CVEs (5)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2006-5568 | 0.03 | — | 0.05 | Oct 27, 2006 | FtpXQ Server 3.0.1 allows remote attackers to cause a denial of service (CPU exhaustion) via a long MKD command. | ||
| CVE-2001-0293 | 0.03 | — | 0.03 | May 3, 2001 | Directory traversal vulnerability in FtpXQ FTP server 2.0.93 allows remote attackers to read arbitrary files via a .. (dot dot) in the GET command. | ||
| CVE-2006-5569 | 0.00 | — | 0.00 | Oct 27, 2006 | FtpXQ Server 3.0.1 installs with two default testing accounts, which allows remote attackers to read or write arbitrary files via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information. | ||
| CVE-2002-1920 | 0.00 | — | 0.01 | Dec 31, 2002 | Buffer overflow in FtpXQ 2.5 allows remote attackers to cause a denial of service (crash) via a MKD command with a long directory name. | ||
| CVE-2001-1213 | 0.00 | — | 0.01 | Dec 18, 2001 | The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and password, which allows remote attackers to read and write arbitrary files in the root folder. |
- CVE-2006-5568Oct 27, 2006risk 0.03cvss —epss 0.05
FtpXQ Server 3.0.1 allows remote attackers to cause a denial of service (CPU exhaustion) via a long MKD command.
- CVE-2001-0293May 3, 2001risk 0.03cvss —epss 0.03
Directory traversal vulnerability in FtpXQ FTP server 2.0.93 allows remote attackers to read arbitrary files via a .. (dot dot) in the GET command.
- CVE-2006-5569Oct 27, 2006risk 0.00cvss —epss 0.00
FtpXQ Server 3.0.1 installs with two default testing accounts, which allows remote attackers to read or write arbitrary files via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
- CVE-2002-1920Dec 31, 2002risk 0.00cvss —epss 0.01
Buffer overflow in FtpXQ 2.5 allows remote attackers to cause a denial of service (crash) via a MKD command with a long directory name.
- CVE-2001-1213Dec 18, 2001risk 0.00cvss —epss 0.01
The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and password, which allows remote attackers to read and write arbitrary files in the root folder.