CVSS: 6.4EPSS: 6%CPEs: 16EXPL: 2CVE-2006-2170
https://notcve.org/view.php?id=CVE-2006-2170
Buffer overflow in ArgoSoft FTP Server 1.4.3.6 allows remote attackers to execute arbitrary code via Unicode in the RNTO command, as demonstrated by the Infigo FTPStress Fuzzer. Desbordamiento de búfer en ArgoSoft FTP Server 1.4.3.6 permite a atacantes remotos ejecutar código arbitrario a través de Unicode en el comando RNTO, según lo demostrado por el Infigo FTPStress Fuzzer. • http://archives.neohapsis.com/archives/bugtraq/2006-05/0139.html http://marc.info/?l=bugtraq&m=114658586018818&w=2 http://secunia.com/advisories/19934 http://www.infigo.hr/en/in_focus/tools http://www.infigo.hr/hr/in_focus/advisories/INFIGO-2006-05-03 http://www.osvdb.org/25216 http://www.securityfocus.com/bid/17789 http://www.vupen.com/english/advisories/2006/1639 https://exchange.xforce.ibmcloud.com/vulnerabilities/26197 •
CVSS: 7.5EPSS: 10%CPEs: 3EXPL: 0CVE-2005-0696
https://notcve.org/view.php?id=CVE-2005-0696
Buffer overflow in ArGoSoft FTP Server 1.4.2.8 allows remote authenticated users to execute arbitrary code via a long DELE command. NOTE: this issue was later reported to also affect 1.4.3.5. • http://lists.grok.org.uk/pipermail/full-disclosure/2006-February/042523.html http://secunia.com/advisories/14526 http://securityreason.com/securityalert/494 http://securitytracker.com/id?1015681 http://www.securityfocus.com/archive/1/392653 http://www.securityfocus.com/archive/1/426081/100/0/threaded http://www.securityfocus.com/bid/12755 https://www.securinfos.info/english/security-advisories-alerts/20060225_ArGoSoft.FTP.Server_Heap.Overflow.html •
CVSS: 10.0EPSS: 1%CPEs: 12EXPL: 0CVE-2005-0520
https://notcve.org/view.php?id=CVE-2005-0520
ArGoSoft FTP Server before 1.4.2.8 allows remote attackers to read arbitrary files via shortcut (.LNK) files in the SITE COPY command, a different vulnerability than CVE-2005-0519. • http://secunia.com/advisories/14372 http://www.argosoft.com/ftpserver/changelist.aspx http://www.osvdb.org/14061 http://www.securityfocus.com/bid/12632 https://exchange.xforce.ibmcloud.com/vulnerabilities/19442 •
CVSS: 10.0EPSS: 1%CPEs: 12EXPL: 0CVE-2005-0519
https://notcve.org/view.php?id=CVE-2005-0519
ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (.LNK) file, using SITE UNZIP to extract the .LNK file onto the server, then accessing the file, a different vulnerability than CVE-2005-0520. • http://secunia.com/advisories/14172 http://www.argosoft.com/ftpserver/changelist.aspx http://www.osvdb.org/13614 http://www.securityfocus.com/bid/12487 https://exchange.xforce.ibmcloud.com/vulnerabilities/17939 •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0CVE-2004-1428
https://notcve.org/view.php?id=CVE-2004-1428
ArGoSoft FTP before 1.4.2.1 generates an error message if the user name does not exist instead of prompting for a password, which allows remote attackers to determine valid usernames. • http://marc.info/?l=bugtraq&m=110451582011666&w=2 http://secunia.com/advisories/13063 http://securitytracker.com/id?1012744 http://www.argosoft.com/ftpserver/changelist.aspx http://www.lovebug.org/argosoft_advisory.txt http://www.osvdb.org/11335 http://www.securityfocus.com/bid/12139 https://exchange.xforce.ibmcloud.com/vulnerabilities/18721 • CWE-203: Observable Discrepancy •