CVE-2005-2426
published 2005-08-03CVE-2005-2426: FTPshell Server 3.38 allows remote authenticated users to cause a denial of service (application crash) by multiple connections and disconnections without…
PriorityP411low2.1CVSS 2.0
AVLACLAuNCNINAP
EXPLOIT
EPSS
1.38%
68.6th percentile
FTPshell Server 3.38 allows remote authenticated users to cause a denial of service (application crash) by multiple connections and disconnections without using the QUIT command.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ftpshell | ftpshell_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Wiz
CVE-2019-25619 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 2.1
CVE-2019-25619 [LOW] CVE-2019-25619 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2019-25619 :
FTPShell Server vulnerability analysis and mitigation
FTP Shell Server 6.83 contains a buffer overflow vulnerability in the 'Account name to ban' field that allows local attackers to execute arbitrary code by supplying a crafted string. Attackers can inject shellcode through the account name parameter in the Manage FTP Accounts dialog to overwrite the return address and execute calc.exe or other commands.
Source : NVD
## 8.6
Score
Published March 22, 2026
Severity HIGH
CNA Score 8.6
Affected Technologies
FTPShell Server
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 2.4
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:ftpshell:ftpsh
Wiz
CVE-2018-25226 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 2.1
CVE-2018-25226 [LOW] CVE-2018-25226 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2018-25226 :
FTPShell Server vulnerability analysis and mitigation
FTPShell Server 6.83 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the account name field. Attackers can trigger a denial of service by pasting a 417-byte payload into the 'Account name to ban' parameter within the Manage FTP Accounts interface.
Source : NVD
## 6.9
Score
Published March 30, 2026
Severity MEDIUM
CNA Score 6.9
Affected Technologies
FTPShell Server
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 2.7
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:ftpshell:ftpshell_server
Sour
Bugzilla
CAN-2005-0086, less segfault
bugzilla·2005-01-27
[MEDIUM] CAN-2005-0086, less segfault
CAN-2005-0086, less segfault
Victor Ashik discovered a heap based buffer overflow in less, caused by a
patch added to the less package in Red Hat Enterprise Linux 3. An attacker
could construct a carefully crafted file that could cause less to crash or
possibly execute arbitrary code when opened. The Common Vulnerabilities
and Exposures project (cve.mitre.org) has assigned the name CAN-2005-0086
to this issue. Note that this issue only affects the version of less
distributed with Red Hat Enterprise Linux 3.
http://rhn.redhat.com/errata/RHSA-2005-068.html
https://bugzilla.redhat.com/beta/show_bug.cgi?id=145527
------- Additional Comments From [email protected] 2005-02-10 19:09:27 ----
*** Bug 2426 has been marked as a duplicate of this bug. ***
------- Additional Comments
http://marc.info/?l=bugtraq&m=112239297430460&w=2http://secunia.com/advisories/16189http://securitytracker.com/id?1014580http://www.securityfocus.com/bid/14382https://exchange.xforce.ibmcloud.com/vulnerabilities/21531http://marc.info/?l=bugtraq&m=112239297430460&w=2http://secunia.com/advisories/16189http://securitytracker.com/id?1014580http://www.securityfocus.com/bid/14382https://exchange.xforce.ibmcloud.com/vulnerabilities/21531
2005-08-03
Published