Filtered by vendor Steve Poulsen
Subscribe
Total
7 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2001-0768 | 1 Steve Poulsen | 1 Guildftpd | 2017-12-18 | 4.6 MEDIUM | N/A |
GuildFTPd 0.9.7 stores user names and passwords in plaintext in the default.usr file, which allows local users to gain privileges as other FTP users by reading the file. | |||||
CVE-2001-0769 | 1 Steve Poulsen | 1 Guildftpd | 2017-10-09 | 5.0 MEDIUM | N/A |
Memory leak in GuildFTPd Server 0.97 allows remote attackers to cause a denial of service via a request containing a null character. | |||||
CVE-2000-0640 | 1 Steve Poulsen | 1 Guildftpd | 2017-10-09 | 7.5 HIGH | N/A |
Guild FTPd allows remote attackers to determine the existence of files outside the FTP root via a .. (dot dot) attack, which provides different error messages depending on whether the file exists or not. | |||||
CVE-2001-0770 | 1 Steve Poulsen | 1 Guildftpd | 2017-10-09 | 7.5 HIGH | N/A |
Buffer overflow in GuildFTPd Server 0.97 allows remote attacker to execute arbitrary code via a long SITE command. | |||||
CVE-2006-5133 | 1 Steve Poulsen | 1 Guildftpd | 2008-09-05 | 7.5 HIGH | N/A |
Buffer overflow in GuildFTPd 0.999.13 allows remote attackers to have an unknown impact, possibly code execution related to input containing "globbing chars." | |||||
CVE-2003-1267 | 1 Steve Poulsen | 1 Guildftpd | 2008-09-05 | 5.0 MEDIUM | N/A |
GuildFTPd 0.999 allows remote attackers to cause a denial of service (crash) via a GET request for MS-DOS device names such as lpt1. | |||||
CVE-2001-0767 | 1 Steve Poulsen | 1 Guildftpd | 2008-09-05 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in GuildFTPd 0.9.7 allows attackers to list or read arbitrary files and directories via a .. in (1) LS or (2) GET. |