VYPR

FTP Serv U

by Alt N

CVEs (4)

  • CVE-2001-0054Feb 16, 2001
    risk 0.04cvss epss 0.12

    Directory traversal vulnerability in FTP Serv-U before 2.5i allows remote attackers to escape the FTP root and read arbitrary files by appending a string such as "/..%20." to a CD command, a variant of a .. (dot dot) attack.

  • CVE-2000-0129Feb 4, 2000
    risk 0.03cvss epss 0.04

    Buffer overflow in the SHGetPathFromIDList function of the Serv-U FTP server allows attackers to cause a denial of service by performing a LIST command on a malformed .lnk file.

  • CVE-1999-0838Dec 1, 1999
    risk 0.03cvss epss 0.02

    Buffer overflow in Serv-U FTP 2.5 allows remote users to conduct a denial of service via the SITE command.

  • CVE-2000-0837Nov 14, 2000
    risk 0.00cvss epss 0.03

    FTP Serv-U 2.5e allows remote attackers to cause a denial of service by sending a large number of null bytes.