Vsftpd
by Beasts
CVEs (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2004-2259 | 0.00 | — | 0.02 | Dec 31, 2004 | vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service (crash) via a SIGCHLD signal during a malloc or free call, which is not re-entrant. | |||
| CVE-2004-0042 | 0.00 | — | 0.01 | Feb 3, 2004 | vsftpd 1.1.3 generates different error messages depending on whether or not a valid username exists, which allows remote attackers to identify valid usernames. |
- CVE-2004-2259Dec 31, 2004risk 0.00cvss —epss 0.02
vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service (crash) via a SIGCHLD signal during a malloc or free call, which is not re-entrant.
- CVE-2004-0042Feb 3, 2004risk 0.00cvss —epss 0.01
vsftpd 1.1.3 generates different error messages depending on whether or not a valid username exists, which allows remote attackers to identify valid usernames.