EFTP
Products
1- 5 CVEs
Recent CVEs
5| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2001-1109 | 0.04 | — | 0.08 | Sep 12, 2001 | Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a .. (dot dot) in the (1) LIST, (2) QUOTE SIZE, and (3) QUOTE MDTM commands. | |||
| CVE-2001-1112 | 0.04 | — | 0.11 | Sep 12, 2001 | Buffer overflow in EFTP 2.0.7.337 allows remote attackers to execute arbitrary code by uploading a .lnk file containing a large number of characters. | |||
| CVE-2001-1111 | 0.00 | — | 0.00 | Sep 12, 2001 | EFTP 2.0.7.337 stores user passwords in plaintext in the eftp2users.dat file. | |||
| CVE-2001-1110 | 0.00 | — | 0.01 | Sep 12, 2001 | EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection. | |||
| CVE-2000-0871 | 0.00 | — | 0.02 | Nov 14, 2000 | Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server. |
- CVE-2001-1109Sep 12, 2001risk 0.04cvss —epss 0.08
Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a .. (dot dot) in the (1) LIST, (2) QUOTE SIZE, and (3) QUOTE MDTM commands.
- CVE-2001-1112Sep 12, 2001risk 0.04cvss —epss 0.11
Buffer overflow in EFTP 2.0.7.337 allows remote attackers to execute arbitrary code by uploading a .lnk file containing a large number of characters.
- CVE-2001-1111Sep 12, 2001risk 0.00cvss —epss 0.00
EFTP 2.0.7.337 stores user passwords in plaintext in the eftp2users.dat file.
- CVE-2001-1110Sep 12, 2001risk 0.00cvss —epss 0.01
EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection.
- CVE-2000-0871Nov 14, 2000risk 0.00cvss —epss 0.02
Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server.