Surgeftp@* Security Vulnerabilities and Issues — Surgeftp@* CVE List

Lucene search

NetwinSurgeftp*

4 matches found

CVE•added 2007/07/15 9:30 p.m.•44 views

CVE-2007-3769

Cross-site scripting (XSS) vulnerability in the mirrored server management interface in SurgeFTP 2.3a1 allows user-assisted, remote FTP servers to inject arbitrary web script or HTML via a malformed response without a status code, which is reflected to the user in the resulting error message. NOTE:...

5.8CVSS5.7AI score0.00668EPSS

CVE•added 2013/08/09 9:55 p.m.•42 views

CVE-2013-4742

Buffer overflow in NetWin SurgeFTP before 23d2 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string within the authentication request.

7.5CVSS8.6AI score0.04162EPSS

CVE•added 2002/03/09 5:0 a.m.•38 views

CVE-2001-0697

NetWin SurgeFTP prior to 1.1h allows a remote attacker to cause a denial of service (crash) via an 'ls ..' command.

5CVSS6.9AI score0.06196EPSS

CVE•added 2007/07/15 9:30 p.m.•34 views

CVE-2007-3768

The mirror mechanism in SurgeFTP 2.3a1 allows user-assisted, remote FTP servers to cause a denial of service (restart) via a malformed response to a PASV command.

8.5CVSS6.5AI score0.00955EPSS