EFTP .lnk File Upload Overflow DoS

Binary data 1833.prm...

EFTP Nonexistent File Request Installation Directory Disclosure

The version of EFTP installed on the remote host reveals its installation directory if sent a request for a nonexistent file. An authenticated attacker may leverage this flaw to gain more knowledge about the affected host, such as its filesystem layout. TRUSTED...

CVE-2001-1193

Directory traversal vulnerability in EFTP 2.0.8.346 allows local users to read directories via a ... modified dot dot in the CWD command...

EFTP Multiple Command Traversal Arbitrary Directory Listing

The version of EFTP installed on the remote host can be used to determine if a given file exists on the remote host or not, by adding dot-dot-slashes in front of them. For instance, it is possible to determine the presence of '\autoexec.bat' by using the command SIZE or MDTM with the argument...

CVE-2001-1110

EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection...

CVE-2001-1110

EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection...

CVE-2000-0870

Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string...

EFTP Newline String Handling Remote DoS

The version of EFTP running on the remote host has a denial of service vulnerability. Sending data without a trailing carriage return causes the service to crash. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10510; scriptversion"1.36";...