CVE-2017-16513
- EPSS 2.22%
- Veröffentlicht 03.11.2017 15:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Ipswitch WS_FTP Professional before 12.6.0.3 has buffer overflows in the local search field and the backup locations field, aka WSCLT-1729.
CVE-2009-4775
- EPSS 5.61%
- Veröffentlicht 21.04.2010 14:30:00
- Zuletzt bearbeitet 16.06.2026 23:14:20
Format string vulnerability in Ipswitch WS_FTP Professional 12 before 12.2 allows remote attackers to cause a denial of service (crash) via format string specifiers in the status code portion of an HTTP response.
- EPSS 7.84%
- Veröffentlicht 19.12.2008 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:00:48
Ipswitch WS_FTP Server Manager before 6.1.1, and possibly other Ipswitch products, allows remote attackers to bypass authentication and read logs via a logLogout action to FTPLogServer/login.asp followed by a request to FTPLogServer/LogViewer.asp wit...
- EPSS 2.78%
- Veröffentlicht 19.12.2008 18:30:00
- Zuletzt bearbeitet 16.06.2026 23:00:49
Ipswitch WS_FTP Server Manager 6.1.0.0 and earlier, and possibly other Ipswitch products, might allow remote attackers to read the contents of custom ASP files in WSFTPSVR/ via a request with an appended dot character.
- EPSS 5.64%
- Veröffentlicht 06.02.2008 12:00:00
- Zuletzt bearbeitet 16.06.2026 22:49:59
The Logging Server (ftplogsrv.exe) 7.9.14.0 and earlier in IPSwitch WS_FTP 6.1 allows remote attackers to cause a denial of service (loss of responsiveness) via a large number of large packets to port 5151/udp, which causes the listening socket to te...
CVE-2007-4555
- EPSS 1.63%
- Veröffentlicht 28.08.2007 00:17:00
- Zuletzt bearbeitet 16.06.2026 22:44:19
Cross-site scripting (XSS) vulnerability in Ipswitch WS_FTP allows remote attackers to inject arbitrary web script or HTML via arguments to a valid command, which is not properly handled when it is displayed by the view log option in the administrati...
CVE-2007-3823
- EPSS 25.17%
- Veröffentlicht 17.07.2007 01:30:00
- Zuletzt bearbeitet 16.06.2026 22:42:48
The Logging Server (Logsrv.exe) in IPSwitch WS_FTP 7.5.29.0 allows remote attackers to cause a denial of service (daemon crash) by sending a crafted packet containing a long string to port 5151/udp.
CVE-2007-2213
- EPSS 4.61%
- Veröffentlicht 24.04.2007 20:19:00
- Zuletzt bearbeitet 16.06.2026 22:39:09
Unspecified vulnerability in the Initialize function in NetscapeFTPHandler in WS_FTP Home and Professional 2007 allows remote attackers to cause a denial of service (NULL dereference and application crash) via unspecified vectors related to "improper...