CVE-2008-3734
- EPSS 67.69%
- Published 20.08.2008 16:41:00
- Last modified 09.04.2025 00:30:58
Format string vulnerability in Ipswitch WS_FTP Home 2007.0.0.2 and WS_FTP Professional 2007.1.0.0 allows remote FTP servers to cause a denial of service (application crash) or possibly execute arbitrary code via format string specifiers in a connecti...
CVE-2007-0665
- EPSS 0.41%
- Published 02.02.2007 21:28:00
- Last modified 09.04.2025 00:30:58
Format string vulnerability in the SCP module in Ipswitch WS_FTP 2007 Professional might allow remote attackers to execute arbitrary commands via format string specifiers in the filename, related to the SHELL WS_FTP script command.
CVE-2007-0330
- EPSS 0.61%
- Published 18.01.2007 02:28:00
- Last modified 09.04.2025 00:30:58
Buffer overflow in wsbho2k0.dll, as used by wsftpurl.exe, in Ipswitch WS_FTP 2007 Professional allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long ftp:// URL in an HTML document, and...
CVE-2004-1884
- EPSS 0.3%
- Published 23.03.2004 05:00:00
- Last modified 03.04.2025 01:03:51
Ipswitch WS_FTP Server 4.0.2 has a backdoor XXSESS_MGRYY username with a default password, which allows remote attackers to gain access.
CVE-2002-1851
- EPSS 16.56%
- Published 31.12.2002 05:00:00
- Last modified 03.04.2025 01:03:51
Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute code on a client system via unknown attack vectors.
CVE-1999-1078
- EPSS 1.01%
- Published 29.07.1999 04:00:00
- Last modified 03.04.2025 01:03:51
WS_FTP Pro 6.0 uses weak encryption for passwords in its initialization files, which allows remote attackers to easily decrypt the passwords and gain privileges.