Vulnerabilities > Wzdftpd
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-10-09 | CVE-2007-5300 | Buffer Errors vulnerability in Wzdftpd 0.8.0/0.8.2 Off-by-one error in the do_login_loop function in libwzd-core/wzd_login.c in wzdftpd 0.8.0, 0.8.2, and possibly other versions allows remote attackers to cause a denial of service (daemon crash) via a long USER command that triggers a stack-based buffer overflow. | 5.0 |
2007-01-23 | CVE-2007-0428 | Denial-Of-Service vulnerability in wzdftpd Unspecified vulnerability in the chtbl_lookup function in hash.c for WzdFTPD 8.0 and earlier allows remote attackers to cause a denial of service via a crafted FTP command, probably due to a NULL pointer dereference. | 5.0 |
2005-09-27 | CVE-2005-3081 | Unspecified vulnerability in Wzdftpd 0.5.4 wzdftpd 0.5.4 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the SITE command. | 4.6 |
2003-08-07 | CVE-2003-0477 | Unspecified vulnerability in Wzdftpd wzdftpd 0.1rc4 and earlier allows remote attackers to cause a denial of service (crash) via a PORT command without an argument. | 5.0 |