Gene6 G6 Ftp Server vulnerabilities
5 known vulnerabilities affecting gene6/g6_ftp_server.
Total CVEs
5
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2LOW1
Vulnerabilities
Page 1 of 1
CVE-2001-0263P4HIGHCVSS 7.5PoCv2.02001-06-18
CVE-2001-0263 [HIGH] CVE-2001-0263: Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows attackers to read file attributes outside of
Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows attackers to read file attributes outside of the web root via the (1) SIZE and (2) MDTM commands when the "show relative paths" option is not enabled.
nvd
CVE-2001-0264P4MEDIUMCVSS 5.0PoCv2.02001-06-18
CVE-2001-0264 [MEDIUM] CVE-2001-0264: Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows remote attackers to obtain NETBIOS credential
Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection.
nvd
CVE-1999-1519P4MEDIUMCVSS 5.0PoCv2.01999-11-17
CVE-1999-1519 [MEDIUM] CVE-1999-1519: Gene6 G6 FTP Server 2.0 allows a remote attacker to cause a denial of service (resource exhaustion)
Gene6 G6 FTP Server 2.0 allows a remote attacker to cause a denial of service (resource exhaustion) via a long (1) user name or (2) password.
nvd
CVE-2006-2172P4HIGHCVSS 7.5v3.12006-05-04
CVE-2006-2172 [HIGH] CVE-2006-2172: Buffer overflow in Gene6 FTP Server 3.1.0 allows remote authenticated attackers to cause a denial of
Buffer overflow in Gene6 FTP Server 3.1.0 allows remote authenticated attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long argument to (1) MKD or (2) XMKD, as demonstrated by the Infigo FTPStress Fuzzer.
nvd
CVE-2005-0690P4LOWCVSS 2.1v2.0v3.0+7 more2005-03-07
CVE-2005-0690 [LOW] CVE-2005-0690: Gene6 FTP Server does not properly restrict access to the control console, which allows local users
Gene6 FTP Server does not properly restrict access to the control console, which allows local users to modify the server configuration and gain privileges, as demonstrated by defining a SITE command.
nvd