Eftp
CVEs (7)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2001-1112 | 0.03 | — | 0.05 | Sep 12, 2001 | Buffer overflow in EFTP 2.0.7.337 allows remote attackers to execute arbitrary code by uploading a .lnk file containing a large number of characters. | ||
| CVE-2001-1109 | 0.03 | — | 0.06 | Sep 12, 2001 | Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a .. (dot dot) in the (1) LIST, (2) QUOTE SIZE, and (3) QUOTE MDTM commands. | ||
| CVE-2001-1193 | 0.00 | — | 0.01 | Dec 13, 2001 | Directory traversal vulnerability in EFTP 2.0.8.346 allows local users to read directories via a ... (modified dot dot) in the CWD command. | ||
| CVE-2001-1111 | 0.00 | — | 0.00 | Sep 12, 2001 | EFTP 2.0.7.337 stores user passwords in plaintext in the eftp2users.dat file. | ||
| CVE-2001-1110 | 0.00 | — | 0.01 | Sep 12, 2001 | EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection. | ||
| CVE-2000-0871 | 0.00 | — | 0.01 | Nov 14, 2000 | Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server. | ||
| CVE-2000-0870 | 0.00 | — | 0.01 | Nov 14, 2000 | Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string. |
- CVE-2001-1112Sep 12, 2001risk 0.03cvss —epss 0.05
Buffer overflow in EFTP 2.0.7.337 allows remote attackers to execute arbitrary code by uploading a .lnk file containing a large number of characters.
- CVE-2001-1109Sep 12, 2001risk 0.03cvss —epss 0.06
Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a .. (dot dot) in the (1) LIST, (2) QUOTE SIZE, and (3) QUOTE MDTM commands.
- CVE-2001-1193Dec 13, 2001risk 0.00cvss —epss 0.01
Directory traversal vulnerability in EFTP 2.0.8.346 allows local users to read directories via a ... (modified dot dot) in the CWD command.
- CVE-2001-1111Sep 12, 2001risk 0.00cvss —epss 0.00
EFTP 2.0.7.337 stores user passwords in plaintext in the eftp2users.dat file.
- CVE-2001-1110Sep 12, 2001risk 0.00cvss —epss 0.01
EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection.
- CVE-2000-0871Nov 14, 2000risk 0.00cvss —epss 0.01
Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server.
- CVE-2000-0870Nov 14, 2000risk 0.00cvss —epss 0.01
Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string.