CVSS: 10.0EPSS: 4%CPEs: 1EXPL: 4CVE-2007-1567 – WarFTP 1.65 (Windows 2000 SP4) - 'USER' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-1567
Stack-based buffer overflow in War FTP Daemon 1.65, and possibly earlier, allows remote attackers to cause a denial of service or execute arbitrary code via unspecified vectors, as demonstrated by warftp_165.tar by Immunity. NOTE: this might be the same issue as CVE-1999-0256, CVE-2000-0131, or CVE-2006-2171, but due to Immunity's lack of details, this cannot be certain. Desbordamiento de búfer basado en pila en War FTP Daemon 1.65, y posiblemente anteriores, permite a atacantes remotos provocar una denegación de servicio o ejecutar código de su elección mediante vectores no especificados, como ha sido demostrado por Immunity con warftp_165.tar. NOTA: este podría ser el mismo problema que CVE-1999-0256, CVE-2000-0131, o CVE-2006-2171, pero debido a la falta de detalles por parte de Immunity, ésto no puede asegurarse. • https://www.exploit-db.com/exploits/3474 https://www.exploit-db.com/exploits/3482 https://www.exploit-db.com/exploits/3570 https://github.com/war4uthor/CVE-2007-1567 http://secunia.com/advisories/24494 http://www.securityfocus.com/bid/22944 http://www.vupen.com/english/advisories/2007/0933 https://www.immunityinc.com/downloads/immpartners/warftp_165.tar •
CVSS: 2.1EPSS: 0%CPEs: 2EXPL: 1CVE-2005-0312 – War FTP Daemon 1.8 - Remote Denial of Service
https://notcve.org/view.php?id=CVE-2005-0312
WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service (access violation) via a CWD command with a crafted pathname, as demonstrated using a large string of "%s" sequences, possibly indicating a format string vulnerability. • https://www.exploit-db.com/exploits/25063 http://marc.info/?l=bugtraq&m=110687202332039&w=2 http://support.jgaa.com/index.php?cmd=ShowReport&ID=02643 http://www.securityfocus.com/bid/12384 https://exchange.xforce.ibmcloud.com/vulnerabilities/19129 •