Cerberus FTP Server
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-0827 | Hig | 0.49 | 7.5 | 0.01 | Dec 6, 2001 | Cerberus FTP server 1.0 - 1.5 allows remote attackers to cause a denial of service (crash) via a large number of "PASV" requests. | ||
| CVE-2001-0702 | 0.04 | — | 0.10 | Sep 20, 2001 | Cerberus FTP 1.5 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long (1) username, (2) password, or (3) PASV command. | |||
| CVE-2006-0357 | 0.03 | — | 0.03 | Jan 22, 2006 | Grant Averett Cerberus FTP Server 2.32, and possibly earlier versions, allows remote attackers to cause an unspecified denial of service via a long string that does not contain a valid FTP command. | |||
| CVE-2001-1295 | 0.00 | — | 0.02 | Aug 21, 2001 | Directory traversal vulnerability in Cerberus FTP Server 1.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the CD command. |
- risk 0.49cvss 7.5epss 0.01
Cerberus FTP server 1.0 - 1.5 allows remote attackers to cause a denial of service (crash) via a large number of "PASV" requests.
- CVE-2001-0702Sep 20, 2001risk 0.04cvss —epss 0.10
Cerberus FTP 1.5 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long (1) username, (2) password, or (3) PASV command.
- CVE-2006-0357Jan 22, 2006risk 0.03cvss —epss 0.03
Grant Averett Cerberus FTP Server 2.32, and possibly earlier versions, allows remote attackers to cause an unspecified denial of service via a long string that does not contain a valid FTP command.
- CVE-2001-1295Aug 21, 2001risk 0.00cvss —epss 0.02
Directory traversal vulnerability in Cerberus FTP Server 1.5 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the CD command.