Vulnerabilities > Ipswitch > WS FTP PRO
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-08-20 | CVE-2008-3734 | USE of Externally-Controlled Format String vulnerability in Ipswitch WS FTP Home and WS FTP PRO Format string vulnerability in Ipswitch WS_FTP Home 2007.0.0.2 and WS_FTP Professional 2007.1.0.0 allows remote FTP servers to cause a denial of service (application crash) or possibly execute arbitrary code via format string specifiers in a connection greeting (response). | 9.3 |
2007-02-02 | CVE-2007-0665 | Unspecified vulnerability in Ipswitch WS FTP PRO 2007 Format string vulnerability in the SCP module in Ipswitch WS_FTP 2007 Professional might allow remote attackers to execute arbitrary commands via format string specifiers in the filename, related to the SHELL WS_FTP script command. network ipswitch | 6.8 |
2007-01-18 | CVE-2007-0330 | Local Memory Corruption vulnerability in Ipswitch WS FTP PRO 2007 Buffer overflow in wsbho2k0.dll, as used by wsftpurl.exe, in Ipswitch WS_FTP 2007 Professional allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long ftp:// URL in an HTML document, and possibly other vectors. | 7.5 |
2002-12-31 | CVE-2002-1851 | Buffer Overflow vulnerability in Ipswitch WS FTP PRO 7.5 Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute code on a client system via unknown attack vectors. | 7.5 |
1999-07-29 | CVE-1999-1078 | Unspecified vulnerability in Ipswitch WS FTP PRO 6.0 WS_FTP Pro 6.0 uses weak encryption for passwords in its initialization files, which allows remote attackers to easily decrypt the passwords and gain privileges. | 7.5 |