cbcvebase.

Khamil Landross And Zack Jones Eftp vulnerabilities

7 known vulnerabilities affecting khamil_landross_and_zack_jones/eftp.

Total CVEs
7
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2001-1109P4HIGHCVSS 7.5PoCv2.0.7.3372001-09-12
CVE-2001-1109 [HIGH] CVE-2001-1109: Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal dire Directory traversal vulnerability in EFTP 2.0.7.337 allows remote authenticated users to reveal directory contents via a .. (dot dot) in the (1) LIST, (2) QUOTE SIZE, and (3) QUOTE MDTM commands.
nvd
CVE-2001-1112P4HIGHCVSS 7.5PoCv2.0.7.3372001-09-12
CVE-2001-1112 [HIGH] CVE-2001-1112: Buffer overflow in EFTP 2.0.7.337 allows remote attackers to execute arbitrary code by uploading a . Buffer overflow in EFTP 2.0.7.337 allows remote attackers to execute arbitrary code by uploading a .lnk file containing a large number of characters.
nvd
CVE-2000-0870P4HIGHCVSS 7.5v2.0.4.2812000-11-14
CVE-2000-0870 [HIGH] CVE-2000-0870: Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string. Buffer overflow in EFTP allows remote attackers to cause a denial of service via a long string.
nvd
CVE-2001-1193P4MEDIUMCVSS 5.0v2.0.8.3462001-12-13
CVE-2001-1193 [MEDIUM] CVE-2001-1193: Directory traversal vulnerability in EFTP 2.0.8.346 allows local users to read directories via a ... Directory traversal vulnerability in EFTP 2.0.8.346 allows local users to read directories via a ... (modified dot dot) in the CWD command.
nvd
CVE-2000-0871P4MEDIUMCVSS 5.0v2.0.4.2812000-11-14
CVE-2000-0871 [MEDIUM] CVE-2000-0871: Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string tha Buffer overflow in EFTP allows remote attackers to cause a denial of service by sending a string that does not contain a newline, then disconnecting from the server.
nvd
CVE-2001-1110P4MEDIUMCVSS 5.0v2.0.7.3372001-09-12
CVE-2001-1110 [MEDIUM] CVE-2001-1110: EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a EFTP 2.0.7.337 allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection.
nvd
CVE-2001-1111P4MEDIUMCVSS 4.6v2.0.7.3372001-09-12
CVE-2001-1111 [MEDIUM] CVE-2001-1111: EFTP 2.0.7.337 stores user passwords in plaintext in the eftp2users.dat file. EFTP 2.0.7.337 stores user passwords in plaintext in the eftp2users.dat file.
nvd
Khamil Landross And Zack Jones Eftp vulnerabilities | cvebase