Personal FTP Server
by Cooolsoft
CVEs (7)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2008-4136 | 0.04 | — | 0.11 | Sep 24, 2008 | Michael Roth Software Personal FTP Server (PFT) 6.0f allows remote attackers to cause a denial of service (service crash) via multiple RETR commands, possibly involving long filenames. | |||
| CVE-2006-6750 | 0.03 | — | 0.03 | Dec 27, 2006 | Format string vulnerability in XM Easy Personal FTP Server 5.0.1 allows remote attackers to cause a denial of service (application crash) via format string specifiers in a long PORT command. NOTE: this issue might be related to CVE-2006-2226. | |||
| CVE-2018-16231 | 0.00 | — | 0.01 | Aug 30, 2018 | Michael Roth Software Personal FTP Server (PFTP) through 8.4f allows remote attackers to cause a denial of service (daemon crash) via an unspecified sequence of FTP commands. | |||
| CVE-2003-0271 | 0.00 | — | 0.05 | May 27, 2003 | Buffer overflow in Personal FTP Server allows remote attackers to execute arbitrary code via a long USER argument. | |||
| CVE-2002-1545 | 0.00 | — | 0.01 | Mar 31, 2003 | CooolSoft Personal FTP Server 2.24 allows remote attackers to obtain the absolute pathname of the FTP root via a PWD command, which includes the full path in the response. | |||
| CVE-2002-1544 | 0.00 | — | 0.00 | Mar 31, 2003 | Directory traversal vulnerability in CooolSoft Personal FTP Server 2.24 allows remote attackers to read or modify arbitrary files via .. (dot dot) sequences in the commands (1) LIST (ls), (2) mkdir, (3) put, or (4) get. | |||
| CVE-2002-0264 | 0.00 | — | 0.01 | May 29, 2002 | PowerFTP Personal FTP Server 2.03 through 2.10 stores sensitive account information in plaintext in the ftpserver.ini file, which allows attackers with access to the file to gain privileges. |
- CVE-2008-4136Sep 24, 2008risk 0.04cvss —epss 0.11
Michael Roth Software Personal FTP Server (PFT) 6.0f allows remote attackers to cause a denial of service (service crash) via multiple RETR commands, possibly involving long filenames.
- CVE-2006-6750Dec 27, 2006risk 0.03cvss —epss 0.03
Format string vulnerability in XM Easy Personal FTP Server 5.0.1 allows remote attackers to cause a denial of service (application crash) via format string specifiers in a long PORT command. NOTE: this issue might be related to CVE-2006-2226.
- CVE-2018-16231Aug 30, 2018risk 0.00cvss —epss 0.01
Michael Roth Software Personal FTP Server (PFTP) through 8.4f allows remote attackers to cause a denial of service (daemon crash) via an unspecified sequence of FTP commands.
- CVE-2003-0271May 27, 2003risk 0.00cvss —epss 0.05
Buffer overflow in Personal FTP Server allows remote attackers to execute arbitrary code via a long USER argument.
- CVE-2002-1545Mar 31, 2003risk 0.00cvss —epss 0.01
CooolSoft Personal FTP Server 2.24 allows remote attackers to obtain the absolute pathname of the FTP root via a PWD command, which includes the full path in the response.
- CVE-2002-1544Mar 31, 2003risk 0.00cvss —epss 0.00
Directory traversal vulnerability in CooolSoft Personal FTP Server 2.24 allows remote attackers to read or modify arbitrary files via .. (dot dot) sequences in the commands (1) LIST (ls), (2) mkdir, (3) put, or (4) get.
- CVE-2002-0264May 29, 2002risk 0.00cvss —epss 0.01
PowerFTP Personal FTP Server 2.03 through 2.10 stores sensitive account information in plaintext in the ftpserver.ini file, which allows attackers with access to the file to gain privileges.