Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Steve Poulsen Subscribe
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2001-0768 1 Steve Poulsen 1 Guildftpd 2017-12-18 4.6 MEDIUM N/A
GuildFTPd 0.9.7 stores user names and passwords in plaintext in the default.usr file, which allows local users to gain privileges as other FTP users by reading the file.
CVE-2001-0769 1 Steve Poulsen 1 Guildftpd 2017-10-09 5.0 MEDIUM N/A
Memory leak in GuildFTPd Server 0.97 allows remote attackers to cause a denial of service via a request containing a null character.
CVE-2000-0640 1 Steve Poulsen 1 Guildftpd 2017-10-09 7.5 HIGH N/A
Guild FTPd allows remote attackers to determine the existence of files outside the FTP root via a .. (dot dot) attack, which provides different error messages depending on whether the file exists or not.
CVE-2001-0770 1 Steve Poulsen 1 Guildftpd 2017-10-09 7.5 HIGH N/A
Buffer overflow in GuildFTPd Server 0.97 allows remote attacker to execute arbitrary code via a long SITE command.
CVE-2006-5133 1 Steve Poulsen 1 Guildftpd 2008-09-05 7.5 HIGH N/A
Buffer overflow in GuildFTPd 0.999.13 allows remote attackers to have an unknown impact, possibly code execution related to input containing "globbing chars."
CVE-2003-1267 1 Steve Poulsen 1 Guildftpd 2008-09-05 5.0 MEDIUM N/A
GuildFTPd 0.999 allows remote attackers to cause a denial of service (crash) via a GET request for MS-DOS device names such as lpt1.
CVE-2001-0767 1 Steve Poulsen 1 Guildftpd 2008-09-05 5.0 MEDIUM N/A
Directory traversal vulnerability in GuildFTPd 0.9.7 allows attackers to list or read arbitrary files and directories via a .. in (1) LS or (2) GET.