RSS   Vulnerabilities for 'Cuteftp'   RSS

2009-09-30
 
CVE-2009-3483

CWE-119
 

 
Heap-based buffer overflow in the Create New Site feature in GlobalSCAPE CuteFTP Professional, Home, and Lite 8.3.3 and 8.3.3.0054 allows user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a site list containing an entry with a long label.

 
2008-06-19
 
CVE-2008-2779

CWE-22
 

 
Directory traversal vulnerability in GlobalSCAPE CuteFTP Home 8.2.0 Build 02.26.2008.4 and CuteFTP Pro 8.2.0 Build 04.01.2008.1 allows remote FTP servers to create or overwrite arbitrary files via ..\ (dot dot backslash) sequences in responses to LIST commands, a related issue to CVE-2002-1345. NOTE: this can be leveraged for code execution by writing to a Startup folder.

 
2005-01-10
 
CVE-2004-1136

 

 
Buffer overflow in CuteFTP Professional 6.0, and possibly other versions, allows remote FTP servers to cause a denial of service (application crash) via large replies to FTP commands.

 
2003-12-31
 
CVE-2003-1261

 

 
Buffer overflow in CuteFTP 5.0 and 5.0.1 allows local users to cause a denial of service (crash) by copying a long URL into a clipboard.

 
 
CVE-2003-1260

 

 
Buffer overflow in CuteFTP 5.0 allows remote attackers to execute arbitrary code via a long response to a LIST command.

 
2000-01-06
 
CVE-2000-0084

 

 
CuteFTP uses weak encryption to store password information in its tree.dat file.

 

 >>> Vendor: Globalscape 2 Products
Cuteftp
Secure ftp server


Copyright 2024, cxsecurity.com

 

Back to Top