CVE-2006-2961
- EPSS 83.47%
- Veröffentlicht 12.06.2006 20:06:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Stack-based buffer overflow in CesarFTP 0.99g and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long MKD command. NOTE: the provenance of this information is unknown; the d...
- EPSS 4.72%
- Veröffentlicht 23.11.2004 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
CesarFTP 0.99e allows remote attackers to cause a denial of service (CPU consumption) via a long RETR parameter.
CVE-2003-0329
- EPSS 0.15%
- Veröffentlicht 09.06.2003 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
CesarFTP 0.99g stores user names and passwords in plaintext in the settings.ini file, which could allow local users to gain privileges.
CVE-2001-0826
- EPSS 1.15%
- Veröffentlicht 06.12.2001 05:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Buffer overflows in CesarFTPD 0.98b allows remote attackers to execute arbitrary commands via long arguments to (1) HELP, (2) USER, (3) PASS, (4) PORT, (5) DELE, (6) REST, (7) RMD, or (8) MKD.
CVE-2001-1336
- EPSS 0.53%
- Veröffentlicht 28.05.2001 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
CesarFTP 0.98b and earlier stores usernames and passwords in plaintext in the settings.ini file, which allows attackers to gain privileges.
- EPSS 3.45%
- Veröffentlicht 27.05.2001 04:00:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
Directory traversal vulnerability in CesarFTP 0.98b and earlier allows remote authenticated users (such as anonymous) to read arbitrary files via a GET with a filename that contains a ...%5c (modified dot dot).