Design/Logic Flaw

Michael Roth Software Personal FTP Server PFTP through 8.4f allows remote attackers to cause a denial of service daemon crash via an unspecified sequence of FTP commands...

CVE-2018-16231

The CVE-2018-16231 entry concerns Michael Roth Software Personal FTP Server (PFTP) up to version 8.4f. The issue is a remote-denial-of-service that crashes the daemon via an unspecified sequence of FTP commands. The connected documents do not provide concrete technical details such as the exact v...

CVE-2018-16231

Michael Roth Software Personal FTP Server PFTP through 8.4f allows remote attackers to cause a denial of service daemon crash via an unspecified sequence of FTP commands...

PFTP Server 8.0f Lite - textfield Local SEH Buffer Overflow Exploit

Exploit for windows platform in category dos / poc Exploit Title: PFTP Server 8.0f lite SEH bypass technique tested on Win7x64 Date: 8-29-2015 Software Link: http://www.heise.de/download/the-personal-ftp-server-78679a5e8458e9faa7c5564617bdd4c4-1440883445-267104.html Exploit Author: Robbie Corley...

PFTP Server 8.0f Lite - textfield Local Buffer Overflow (SEH) (PoC)

Exploit Title: PFTP Server 8.0f lite SEH bypass technique tested on Win7x64 Date: 8-29-2015 Software Link: http://www.heise.de/download/the-personal-ftp-server-78679a5e8458e9faa7c5564617bdd4c4-1440883445-267104.html Exploit Author: Robbie Corley Contact: [email protected] Website: CVE:...

PFTP Server 8.0f Lite - textfield Local Buffer Overflow (SEH) (PoC)

PFTP Server 8.0f Lite - textfield Local Buffer Overflow SEH PoC Exploit Title: PFTP Server 8.0f lite SEH bypass technique tested on Win7x64 Date: 8-29-2015 Software Link: http://www.heise.de/download/the-personal-ftp-server-78679a5e8458e9faa7c5564617bdd4c4-1440883445-267104.html Exploit Author:...

PFTP Server 8.0f Buffer Overflow

Exploit Title: PFTP Server 8.0f lite SEH bypass technique tested on Win7x64 Date: 8-29-2015 Software Link: http://www.heise.de/download/the-personal-ftp-server-78679a5e8458e9faa7c5564617bdd4c4-1440883445-267104.html Exploit Author: Robbie Corley Contact: [email protected] Website: CVE:...

PFTP Cleartext Local Password Disclosure

The remote web server is running PFTP. This software stores the list of user names and passwords in clear text in \Program Files\PFTP\PFTPUSERS3.USR. An attacker with a full access to this host may use this flaw to gain access to other FTP servers used by the same users. C Tenable Network Securit...

PFTP Default Unpassworded Account

It was possible to log into the remote FTP server as ' ' / ' '. If the remote server is PFTP, then anyone can use this account to read arbitrary files on the remote host. C Tenable Network Security, Inc. Thanks to Overlord for supplying me with the information for this problem as well as a copy o...