Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Ftpshell Subscribe
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-18077 1 Ftpshell 1 Ftpshell Server 2021-12-21 5.0 MEDIUM 7.5 HIGH
A buffer overflow vulnerability in the Virtual Path Mapping component of FTPShell v6.83 allows attackers to cause a denial of service (DoS).
CVE-2018-7573 1 Ftpshell 1 Ftpshell Client 2019-03-01 10.0 HIGH 9.8 CRITICAL
An issue was discovered in FTPShell Client 6.7. A remote FTP server can send 400 characters of 'F' in conjunction with the FTP 220 response code to crash the application; after this overflow, one can run arbitrary code on the victim machine. This is similar to CVE-2009-3364 and CVE-2017-6465.
CVE-2009-0349 1 Ftpshell 1 Ftpshell Server 2017-09-28 9.3 HIGH N/A
Stack-based buffer overflow in FTPShell Server 4.3 allows user-assisted remote attackers to cause a denial of service (persistent daemon crash) and possibly execute arbitrary code via a long string in a licensing key (aka .key) file.
CVE-2009-3364 1 Ftpshell 1 Ftpshell 2017-09-18 9.3 HIGH N/A
Stack-based buffer overflow in FTPShell Client 4.1 RC2 allows remote FTP servers to execute arbitrary code via a long response to a PASV command.
CVE-2005-2426 1 Ftpshell 1 Ftpshell Server 2017-07-10 2.1 LOW N/A
FTPshell Server 3.38 allows remote authenticated users to cause a denial of service (application crash) by multiple connections and disconnections without using the QUIT command.
CVE-2017-6465 1 Ftpshell 1 Ftpshell Client 2017-03-14 7.5 HIGH 9.8 CRITICAL
Remote Code Execution was discovered in FTPShell Client 6.53. By default, the client sends a PWD command to the FTP server it is connecting to; however, it doesn't check the response's length, leading to a buffer overflow situation.