Home Ftp Server
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2009-4053 | Med | 0.46 | 6.5 | 0.04 | Nov 23, 2009 | Multiple directory traversal vulnerabilities in Home FTP Server 1.10.1.139 allow remote authenticated users to (1) create arbitrary directories via directory traversal sequences in an MKD command or (2) create files with any contents in arbitrary directories via directory… | ||
| CVE-2009-4051 | 0.03 | — | 0.06 | Nov 23, 2009 | Home FTP Server 1.10.1.139 allows remote attackers to cause a denial of service (daemon outage) via multiple invalid SITE INDEX commands. | |||
| CVE-2008-1478 | 0.03 | — | 0.03 | Mar 24, 2008 | Home FTP Server 1.4.5.89 allows remote attackers to cause a denial of service (crash) by opening a FTP passive mode connection, then closing the original FTP connection. NOTE: some of these details are obtained from third party information. | |||
| CVE-2006-0356 | 0.00 | — | 0.02 | Jan 22, 2006 | Ari Pikivirta Home Ftp Server 1.0.7 allows remote attackers to cause an unspecified denial of service via a long USER command combined with a long PASS command. | |||
| CVE-2005-2727 | 0.00 | — | 0.01 | Aug 30, 2005 | Home Ftp Server 1.0.7 stores sensitive user information and server information in the same directory as the user's home directory, which allows remote authenticated users to obtain sensitive information by obtaining ftpmembers.lst and ftpsettings.lst. | |||
| CVE-2005-2726 | 0.00 | — | 0.02 | Aug 30, 2005 | Directory traversal vulnerability in Home Ftp Server 1.0.7 allows remote authenticated users to read arbitrary files via "C:\" (Windows drive letter) sequences in commands such as (1) LIST or (2) RETR. |
- risk 0.46cvss 6.5epss 0.04
Multiple directory traversal vulnerabilities in Home FTP Server 1.10.1.139 allow remote authenticated users to (1) create arbitrary directories via directory traversal sequences in an MKD command or (2) create files with any contents in arbitrary directories via directory…
- CVE-2009-4051Nov 23, 2009risk 0.03cvss —epss 0.06
Home FTP Server 1.10.1.139 allows remote attackers to cause a denial of service (daemon outage) via multiple invalid SITE INDEX commands.
- CVE-2008-1478Mar 24, 2008risk 0.03cvss —epss 0.03
Home FTP Server 1.4.5.89 allows remote attackers to cause a denial of service (crash) by opening a FTP passive mode connection, then closing the original FTP connection. NOTE: some of these details are obtained from third party information.
- CVE-2006-0356Jan 22, 2006risk 0.00cvss —epss 0.02
Ari Pikivirta Home Ftp Server 1.0.7 allows remote attackers to cause an unspecified denial of service via a long USER command combined with a long PASS command.
- CVE-2005-2727Aug 30, 2005risk 0.00cvss —epss 0.01
Home Ftp Server 1.0.7 stores sensitive user information and server information in the same directory as the user's home directory, which allows remote authenticated users to obtain sensitive information by obtaining ftpmembers.lst and ftpsettings.lst.
- CVE-2005-2726Aug 30, 2005risk 0.00cvss —epss 0.02
Directory traversal vulnerability in Home Ftp Server 1.0.7 allows remote authenticated users to read arbitrary files via "C:\" (Windows drive letter) sequences in commands such as (1) LIST or (2) RETR.