Warftpd
Sign in to watchby Jgaa
CVEs (8)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-1999-0256 | 0.09 | — | 0.81 | Feb 1, 1998 | Buffer overflow in War FTP allows remote execution of commands. | ||
| CVE-2009-5141 | 0.04 | — | 0.10 | Apr 1, 2014 | Format string vulnerability in War FTP Daemon (warftpd) 1.82 RC 12 allows remote authenticated users to cause a denial of service (crash) via format string specifiers in a LIST command. | ||
| CVE-2006-5789 | 0.04 | — | 0.08 | Nov 7, 2006 | War FTP Daemon (WarFTPd) 1.82.00-RC11 allows remote authenticated users to cause a denial of service via a large number of "%s" format strings in (1) CWD, (2) CDUP, (3) DELE, (4) NLST, (5) LIST, (6) SIZE, and possibly other commands. NOTE: it is possible that vector 1 is an off-by-one variant or incomplete fix of CVE-2005-0312. | ||
| CVE-2000-0131 | 0.04 | — | 0.07 | Feb 1, 2000 | Buffer overflow in War FTPd 1.6x allows users to cause a denial of service via long MKD and CWD commands. | ||
| CVE-2013-2278 | 0.01 | — | 0.09 | Apr 1, 2014 | Unspecified vulnerability in War FTP Daemon (warftpd) 1.82, when running as a Windows service, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors related to log messages and the "internal log handler to the Windows Event log." | ||
| CVE-2006-2171 | 0.00 | — | 0.04 | May 4, 2006 | Buffer overflow in WDM.exe in WarFTPD allows remote attackers to execute arbitrary code via unspecified arguments, as demonstrated by the Infigo FTPStress Fuzzer. | ||
| CVE-2000-0044 | 0.00 | — | 0.02 | Jan 6, 2000 | Macros in War FTP 1.70 and 1.67b2 allow local or remote attackers to read arbitrary files or execute commands. | ||
| CVE-1999-1003 | 0.00 | — | 0.01 | Dec 13, 1999 | War FTP Daemon 1.70 allows remote attackers to cause a denial of service by flooding it with connections. |