Xm Easy Personal FTP Server
by Dxmsoft
CVEs (9)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2008-5626 | 0.06 | — | 0.36 | Dec 17, 2008 | XM Easy Personal FTP Server 5.6.0 allows remote authenticated users to cause a denial of service via a crafted argument to the NLST command, as demonstrated by a -1 argument. | |||
| CVE-2009-3643 | 0.04 | — | 0.06 | Oct 9, 2009 | Dxmsoft XM Easy Personal FTP Server 5.8.0 allows remote attackers to cause a denial of service via a long argument to the (1) LIST and (2) NLST commands, a differnt issue than CVE-2008-5626 and CVE-2006-5728. | |||
| CVE-2009-4048 | 0.03 | — | 0.02 | Nov 23, 2009 | Dxmsoft XM Easy Personal FTP Server 5.8.0 allows remote authenticated users to cause a denial of service (daemon outage) via an APPE command to one socket in conjunction with a DELE command to a second socket. | |||
| CVE-2007-1195 | 0.03 | — | 0.05 | Mar 2, 2007 | Multiple buffer overflows in XM Easy Personal FTP Server 5.3.0 allow remote attackers to execute arbitrary code via unspecified vectors. NOTE: this issue might overlap CVE-2006-2225, CVE-2006-2226, or CVE-2006-5728. | |||
| CVE-2006-6751 | 0.03 | — | 0.03 | Dec 27, 2006 | Format string vulnerability in XM Easy Personal FTP Server 5.2.1 allows remote attackers to cause a denial of service (application crash) via format string specifiers in the USER command or certain other available or nonexistent commands. NOTE: It was later reported that 5.3.0… | |||
| CVE-2006-6750 | 0.03 | — | 0.02 | Dec 27, 2006 | Format string vulnerability in XM Easy Personal FTP Server 5.0.1 allows remote attackers to cause a denial of service (application crash) via format string specifiers in a long PORT command. NOTE: this issue might be related to CVE-2006-2226. | |||
| CVE-2006-5728 | 0.03 | — | 0.02 | Nov 6, 2006 | XM Easy Personal FTP Server 5.2.1 and earlier allows remote authenticated users to cause a denial of service via a long argument to the NLST command, possibly involving the -al flags. | |||
| CVE-2006-2225 | 0.03 | — | 0.06 | May 5, 2006 | Buffer overflow in XM Easy Personal FTP Server 4.3 and earlier allows remote attackers to execute arbitrary code, probably via a USER command with a long username. | |||
| CVE-2006-2226 | 0.03 | — | 0.04 | May 5, 2006 | Buffer overflow in XM Easy Personal FTP Server 4.2 and 5.0.1 allows remote authenticated users to cause a denial of service via a long argument to the PORT command. |
- CVE-2008-5626Dec 17, 2008risk 0.06cvss —epss 0.36
XM Easy Personal FTP Server 5.6.0 allows remote authenticated users to cause a denial of service via a crafted argument to the NLST command, as demonstrated by a -1 argument.
- CVE-2009-3643Oct 9, 2009risk 0.04cvss —epss 0.06
Dxmsoft XM Easy Personal FTP Server 5.8.0 allows remote attackers to cause a denial of service via a long argument to the (1) LIST and (2) NLST commands, a differnt issue than CVE-2008-5626 and CVE-2006-5728.
- CVE-2009-4048Nov 23, 2009risk 0.03cvss —epss 0.02
Dxmsoft XM Easy Personal FTP Server 5.8.0 allows remote authenticated users to cause a denial of service (daemon outage) via an APPE command to one socket in conjunction with a DELE command to a second socket.
- CVE-2007-1195Mar 2, 2007risk 0.03cvss —epss 0.05
Multiple buffer overflows in XM Easy Personal FTP Server 5.3.0 allow remote attackers to execute arbitrary code via unspecified vectors. NOTE: this issue might overlap CVE-2006-2225, CVE-2006-2226, or CVE-2006-5728.
- CVE-2006-6751Dec 27, 2006risk 0.03cvss —epss 0.03
Format string vulnerability in XM Easy Personal FTP Server 5.2.1 allows remote attackers to cause a denial of service (application crash) via format string specifiers in the USER command or certain other available or nonexistent commands. NOTE: It was later reported that 5.3.0…
- CVE-2006-6750Dec 27, 2006risk 0.03cvss —epss 0.02
Format string vulnerability in XM Easy Personal FTP Server 5.0.1 allows remote attackers to cause a denial of service (application crash) via format string specifiers in a long PORT command. NOTE: this issue might be related to CVE-2006-2226.
- CVE-2006-5728Nov 6, 2006risk 0.03cvss —epss 0.02
XM Easy Personal FTP Server 5.2.1 and earlier allows remote authenticated users to cause a denial of service via a long argument to the NLST command, possibly involving the -al flags.
- CVE-2006-2225May 5, 2006risk 0.03cvss —epss 0.06
Buffer overflow in XM Easy Personal FTP Server 4.3 and earlier allows remote attackers to execute arbitrary code, probably via a USER command with a long username.
- CVE-2006-2226May 5, 2006risk 0.03cvss —epss 0.04
Buffer overflow in XM Easy Personal FTP Server 4.2 and 5.0.1 allows remote authenticated users to cause a denial of service via a long argument to the PORT command.