Wu-ftpd Security Vulnerabilities and Issues — Wu-ftpd CVE List

Lucene search

Washington UniversityWu-ftpd

6 matches found

CVE•added 1999/09/29 4:0 a.m.•201 views

CVE-1999-0017

FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce.

7.5CVSS6.3AI score0.01136EPSS

CVE•added 2002/06/25 4:0 a.m.•96 views

CVE-2001-0550

wu-ftpd 2.6.1 allows remote attackers to execute arbitrary commands via a "~{" argument to commands such as CWD, which is not properly handled by the glob function (ftpglob).

7.5CVSS9.7AI score0.73511EPSS

CVE•added 2004/09/01 4:0 a.m.•63 views

CVE-2004-0148

wu-ftpd 2.6.2 and earlier, with the restricted-gid option enabled, allows local users to bypass access restrictions by changing the permissions to prevent access to their home directory, which causes wu-ftpd to use the root directory instead.

7.2CVSS8.8AI score0.00033EPSS

CVE•added 2002/02/02 5:0 a.m.•50 views

CVE-2001-0935

Vulnerability in wu-ftpd 2.6.0, and possibly earlier versions, which is unrelated to the ftpglob bug described in CVE-2001-0550.

7.5CVSS6.5AI score0.73511EPSS

CVE•added 2000/01/18 5:0 a.m.•48 views

CVE-1999-0955

Race condition in wu-ftpd and BSDI ftpd allows remote attackers to gain root access via the SITE EXEC command.

7.6CVSS7.2AI score0.01229EPSS

CVE•added 2007/05/21 8:0 p.m.•45 views

CVE-2003-1329

ftpd.c in wu-ftpd 2.6.2, when running on "operating systems that only allow one non-connected socket bound to the same local address," does not close failed connections, which allows remote attackers to cause a denial of service.

7.8CVSS6.5AI score0.00537EPSS