Lucene search

Crob Ftp Server Security Vulnerabilities

cve

CVE-2003-1205

Crob FTP Server 2.60.1 allows remote authenticated users to cause a denial of service (crash) by renaming a file to the "con" MS-DOS device name.

6.6AI Score

0.014EPSS

2005-05-19 04:00 AM

cve

CVE-2003-1206

Format string vulnerability in Crob FTP Server 2.60.1 allows remote attackers to cause a denial of service (crash) via "%s" or "%n" sequences in (1) the username during login, or other FTP commands such as (2) dir.

7.2AI Score

0.017EPSS

2005-05-19 04:00 AM

cve

CVE-2003-1207

Crob FTP Server 3.5.1 allows remote authenticated users to cause a denial of service (crash) via a dir command with a large number of "." characters followed by a "/*" string.

6.7AI Score

0.042EPSS

2005-05-19 04:00 AM

cve

CVE-2004-0282

Crob FTP daemon 3.5.2 allows remote attackers to cause a denial of service (crash) by repeatedly connecting to and disconnecting from the server.

6.7AI Score

0.039EPSS

2004-11-23 05:00 AM

cve

CVE-2004-2309

Directory traversal vulnerability in Crob FTP Server 3.5.1 allows local users to browse outside the FTP root via multiple ../ (dot dot slash) in the DIR command.

6.7AI Score

0.0004EPSS

2005-08-16 04:00 AM

cve

CVE-2006-6558

Crob FTP Server 3.6.1 b.263 allows remote attackers to cause a denial of service via a long series of "?A" sequences in the (1) LIST and possibly (2) NLST command.

6.7AI Score

0.053EPSS

2006-12-14 06:28 PM