Eftp Security Vulnerabilities and Issues — Eftp CVE List

Lucene search

Khamil Landross And Zack JonesEftp

7 matches found

CVE•added 2001/01/22 5:0 a.m.•40 views

CVE-2000-0871

Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server.

5CVSS6.9AI score0.00998EPSS

CVE•added 2002/06/25 4:0 a.m.•40 views

CVE-2001-1193

Directory traversal vulnerability in EFTP 2.0.8.346 allows local users to read directories via a ... (modified dot dot) in the CWD command.

5CVSS6.1AI score0.01067EPSS

CVE•added 2002/03/15 5:0 a.m.•38 views

CVE-2001-1109

Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a .. (dot dot) in the (1) LIST, (2) QUOTE SIZE, and (3) QUOTE MDTM commands.

7.5CVSS6.1AI score0.05522EPSS

CVE•added 2001/01/22 5:0 a.m.•36 views

CVE-2000-0870

Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string.

7.5CVSS6.8AI score0.00808EPSS

CVE•added 2002/03/15 5:0 a.m.•33 views

CVE-2001-1112

Buffer overflow in EFTP 2.0.7.337 allows remote attackers to execute arbitrary code by uploading a .lnk file containing a large number of characters.

7.5CVSS7.9AI score0.05386EPSS

CVE•added 2002/03/15 5:0 a.m.•31 views

CVE-2001-1110

EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection.

5CVSS6.7AI score0.00814EPSS

CVE•added 2002/03/15 5:0 a.m.•27 views

CVE-2001-1111

EFTP 2.0.7.337 stores user passwords in plaintext in the eftp2users.dat file.

4.6CVSS7AI score0.00074EPSS