Lucene search

Ftpxq Security Vulnerabilities - May

cve

CVE-2001-0293

Directory traversal vulnerability in FtpXQ FTP server 2.0.93 allows remote attackers to read arbitrary files via a .. (dot dot) in the GET command.

7AI Score

0.052EPSS

2001-05-03 04:00 AM

cve

CVE-2001-1213

The default configuration of DataWizard FtpXQ 2.0 and 2.1 includes a default username and password, which allows remote attackers to read and write arbitrary files in the root folder.

7.2AI Score

0.003EPSS

2002-03-15 05:00 AM

cve

CVE-2002-1920

Buffer overflow in FtpXQ 2.5 allows remote attackers to cause a denial of service (crash) via a MKD command with a long directory name.

7.3AI Score

0.011EPSS

2005-06-28 04:00 AM

cve

CVE-2006-5568

FtpXQ Server 3.0.1 allows remote attackers to cause a denial of service (CPU exhaustion) via a long MKD command.

6.9AI Score

0.109EPSS

2006-10-27 04:07 PM

cve

CVE-2006-5569

FtpXQ Server 3.0.1 installs with two default testing accounts, which allows remote attackers to read or write arbitrary files via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

6.5AI Score

0.004EPSS

2006-10-27 04:07 PM