RSS   Podatności dla 'Ws ftp'   RSS

2010-04-21
 
CVE-2009-4775

CWE-134
 

 
Format string vulnerability in Ipswitch WS_FTP Professional 12 before 12.2 allows remote attackers to cause a denial of service (crash) via format string specifiers in the status code portion of an HTTP response.

 
2008-12-19
 
CVE-2008-5693

CWE-20
 

 
Ipswitch WS_FTP Server Manager 6.1.0.0 and earlier, and possibly other Ipswitch products, might allow remote attackers to read the contents of custom ASP files in WSFTPSVR/ via a request with an appended dot character.

 
 
CVE-2008-5692

CWE-287
 

 
Ipswitch WS_FTP Server Manager before 6.1.1, and possibly other Ipswitch products, allows remote attackers to bypass authentication and read logs via a logLogout action to FTPLogServer/login.asp followed by a request to FTPLogServer/LogViewer.asp with the localhostnull account name.

 
2008-02-06
 
CVE-2008-0608

CWE-119
 

 
The Logging Server (ftplogsrv.exe) 7.9.14.0 and earlier in IPSwitch WS_FTP 6.1 allows remote attackers to cause a denial of service (loss of responsiveness) via a large number of large packets to port 5151/udp, which causes the listening socket to terminate and prevents log commands from being recorded, a different vulnerability than CVE-2007-3823.

 
2007-08-27
 
CVE-2007-4555

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in Ipswitch WS_FTP allows remote attackers to inject arbitrary web script or HTML via arguments to a valid command, which is not properly handled when it is displayed by the view log option in the administration interface. NOTE: this can be leveraged to create a new admin account.

 
2007-07-16
 
CVE-2007-3823

 

 
The Logging Server (Logsrv.exe) in IPSwitch WS_FTP 7.5.29.0 allows remote attackers to cause a denial of service (daemon crash) by sending a crafted packet containing a long string to port 5151/udp.

 
2007-04-24
 
CVE-2007-2213

CWE-Other
 

 
Unspecified vulnerability in the Initialize function in NetscapeFTPHandler in WS_FTP Home and Professional 2007 allows remote attackers to cause a denial of service (NULL dereference and application crash) via unspecified vectors related to "improper arguments."

 

 >>> Vendor: Ipswitch 26 Produkty
Ws ftp server
Imail
Ws ftp pro
Wincom lpd
Tftp server
Whatsup gold
Imail express
Ipswitch collaboration suite
Whatsup
Imail server
Whatsup small business
Whatsup professional
Ipswitch secure server
Imail plus
Imail secure server
Imail premium
Ws ftp
Imserver
Imail client
Instant messaging
Ws ftp home
Moveit dmz
Moveit mobile
Moveit transfer 2017
Moveit
Moveit transfer


Copyright 2024, cxsecurity.com

 

Back to Top