Vendor
Dxmsoft
Products
1
CVEs
9
Across products
9
Status
Private
Products
1- 9 CVEs
Recent CVEs
9| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2008-5626 | 0.10 | — | 0.83 | Dec 17, 2008 | XM Easy Personal FTP Server 5.6.0 allows remote authenticated users to cause a denial of service via a crafted argument to the NLST command, as demonstrated by a -1 argument. | ||
| CVE-2007-1195 | 0.06 | — | 0.36 | Mar 2, 2007 | Multiple buffer overflows in XM Easy Personal FTP Server 5.3.0 allow remote attackers to execute arbitrary code via unspecified vectors. NOTE: this issue might overlap CVE-2006-2225, CVE-2006-2226, or CVE-2006-5728. | ||
| CVE-2006-5728 | 0.04 | — | 0.07 | Nov 6, 2006 | XM Easy Personal FTP Server 5.2.1 and earlier allows remote authenticated users to cause a denial of service via a long argument to the NLST command, possibly involving the -al flags. | ||
| CVE-2006-2226 | 0.04 | — | 0.09 | May 5, 2006 | Buffer overflow in XM Easy Personal FTP Server 4.2 and 5.0.1 allows remote authenticated users to cause a denial of service via a long argument to the PORT command. | ||
| CVE-2006-2225 | 0.04 | — | 0.14 | May 5, 2006 | Buffer overflow in XM Easy Personal FTP Server 4.3 and earlier allows remote attackers to execute arbitrary code, probably via a USER command with a long username. | ||
| CVE-2009-4048 | 0.03 | — | 0.02 | Nov 23, 2009 | Dxmsoft XM Easy Personal FTP Server 5.8.0 allows remote authenticated users to cause a denial of service (daemon outage) via an APPE command to one socket in conjunction with a DELE command to a second socket. | ||
| CVE-2009-3643 | 0.03 | — | 0.04 | Oct 9, 2009 | Dxmsoft XM Easy Personal FTP Server 5.8.0 allows remote attackers to cause a denial of service via a long argument to the (1) LIST and (2) NLST commands, a differnt issue than CVE-2008-5626 and CVE-2006-5728. | ||
| CVE-2006-6751 | 0.03 | — | 0.06 | Dec 27, 2006 | Format string vulnerability in XM Easy Personal FTP Server 5.2.1 allows remote attackers to cause a denial of service (application crash) via format string specifiers in the USER command or certain other available or nonexistent commands. NOTE: It was later reported that 5.3.0 is also vulnerable. | ||
| CVE-2006-6750 | 0.03 | — | 0.03 | Dec 27, 2006 | Format string vulnerability in XM Easy Personal FTP Server 5.0.1 allows remote attackers to cause a denial of service (application crash) via format string specifiers in a long PORT command. NOTE: this issue might be related to CVE-2006-2226. |