cbcvebase.
CVE-2004-1885
published 2004-12-31

CVE-2004-1885: Ipswitch WS_FTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc…

PriorityP427high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
3.52%
87.8th percentile
Ipswitch WS_FTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc options that are handled by iftpmgr.exe.

Affected

1 ranges
VendorProductVersion rangeFixed in
progressws_ftp_server
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.