Cooolsoft Powerftp vulnerabilities
6 known vulnerabilities affecting cooolsoft/powerftp.
Total CVEs
6
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH5MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2001-0932P3HIGHCVSS 7.5PoCv2.032001-11-28
CVE-2001-0932 [HIGH] CVE-2001-0932: Buffer overflow in Cooolsoft PowerFTP Server 2.03 allows remote attackers to cause a denial of servi
Buffer overflow in Cooolsoft PowerFTP Server 2.03 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long command.
nvd
CVE-2002-1522P4MEDIUMCVSS 5.0PoCv2.03v2.10+2 more2003-04-02
CVE-2002-1522 [MEDIUM] CVE-2002-1522: Buffer overflow in PowerFTP FTP server 2.24, and possibly other versions, allows remote attackers to
Buffer overflow in PowerFTP FTP server 2.24, and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long USER argument.
nvd
CVE-2001-0933P4HIGHCVSS 7.5v2.032001-11-28
CVE-2001-0933 [HIGH] CVE-2001-0933: Cooolsoft PowerFTP Server 2.03 allows remote attackers to list the contents of arbitrary drives via
Cooolsoft PowerFTP Server 2.03 allows remote attackers to list the contents of arbitrary drives via a ls (LIST) command that includes the drive letter as an argument, e.g. "ls C:".
nvd
CVE-2001-0931P4HIGHCVSS 7.5v2.032001-11-28
CVE-2001-0931 [HIGH] CVE-2001-0931: Directory traversal vulnerability in Cooolsoft PowerFTP Server 2.03 allows attackers to list or read
Directory traversal vulnerability in Cooolsoft PowerFTP Server 2.03 allows attackers to list or read arbitrary files and directories via a .. (dot dot) in (1) LS or (2) GET.
nvd
CVE-2001-0934P4HIGHCVSS 7.5v2.032001-11-28
CVE-2001-0934 [HIGH] CVE-2001-0934: Cooolsoft PowerFTP Server 2.03 allows remote attackers to obtain the physical path of the server roo
Cooolsoft PowerFTP Server 2.03 allows remote attackers to obtain the physical path of the server root via the pwd command, which lists the full pathname.
nvd
CVE-2002-0264P4HIGHCVSS 7.5v2.03v2.102002-05-29
CVE-2002-0264 [HIGH] CVE-2002-0264: PowerFTP Personal FTP Server 2.03 through 2.10 stores sensitive account information in plaintext in
PowerFTP Personal FTP Server 2.03 through 2.10 stores sensitive account information in plaintext in the ftpserver.ini file, which allows attackers with access to the file to gain privileges.
nvd