Lucene search

Steve Poulsen Security Vulnerabilities

cve

CVE-2000-0640

Guild FTPd allows remote attackers to determine the existence of files outside the FTP root via a .. (dot dot) attack, which provides different error messages depending on whether the file exists or not.

6.7AI Score

0.024EPSS

2000-10-13 04:00 AM

cve

CVE-2001-0767

Directory traversal vulnerability in GuildFTPd 0.9.7 allows attackers to list or read arbitrary files and directories via a .. in (1) LS or (2) GET.

6.5AI Score

0.001EPSS

2001-10-18 04:00 AM

cve

CVE-2001-0768

GuildFTPd 0.9.7 stores user names and passwords in plaintext in the default.usr file, which allows local users to gain privileges as other FTP users by reading the file.

6.9AI Score

0.0004EPSS

2001-10-18 04:00 AM

cve

CVE-2001-0769

Memory leak in GuildFTPd Server 0.97 allows remote attackers to cause a denial of service via a request containing a null character.

6.9AI Score

0.003EPSS

2002-06-25 04:00 AM

cve

CVE-2001-0770

Buffer overflow in GuildFTPd Server 0.97 allows remote attacker to execute arbitrary code via a long SITE command.

7.8AI Score

0.048EPSS

2002-06-25 04:00 AM

cve

CVE-2003-1267

GuildFTPd 0.999 allows remote attackers to cause a denial of service (crash) via a GET request for MS-DOS device names such as lpt1.

7AI Score

0.009EPSS

2005-11-16 07:37 AM

cve

CVE-2006-5133

Buffer overflow in GuildFTPd 0.999.13 allows remote attackers to have an unknown impact, possibly code execution related to input containing "globbing chars."

8AI Score

0.054EPSS

2006-10-03 04:03 AM