CVSS: 10.0EPSS: 1%CPEs: 12EXPL: 0CVE-2005-0520
https://notcve.org/view.php?id=CVE-2005-0520
23 Feb 2005 — ArGoSoft FTP Server before 1.4.2.8 allows remote attackers to read arbitrary files via shortcut (.LNK) files in the SITE COPY command, a different vulnerability than CVE-2005-0519. • http://secunia.com/advisories/14372 •
CVSS: 10.0EPSS: 1%CPEs: 12EXPL: 0CVE-2005-0519
https://notcve.org/view.php?id=CVE-2005-0519
18 Feb 2005 — ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (.LNK) file, using SITE UNZIP to extract the .LNK file onto the server, then accessing the file, a different vulnerability than CVE-2005-0520. • http://secunia.com/advisories/14172 •
CVSS: 5.3EPSS: 1%CPEs: 1EXPL: 0CVE-2004-1428
https://notcve.org/view.php?id=CVE-2004-1428
31 Dec 2004 — ArGoSoft FTP before 1.4.2.1 generates an error message if the user name does not exist instead of prompting for a password, which allows remote attackers to determine valid usernames. • http://marc.info/?l=bugtraq&m=110451582011666&w=2 • CWE-203: Observable Discrepancy •
CVSS: 9.8EPSS: 0%CPEs: 12EXPL: 0CVE-2004-1429
https://notcve.org/view.php?id=CVE-2004-1429
31 Dec 2004 — ArGoSoft FTP 1.4.2.4 and earlier does not limit the number of times that a bad password can be entered, which makes it easier for remote attackers to guess passwords via a brute force attack. • http://marc.info/?l=bugtraq&m=110451582011666&w=2 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2004-2672
https://notcve.org/view.php?id=CVE-2004-2672
31 Dec 2004 — Unspecified vulnerability in ArGoSoft FTP server before 1.4.2.2 allows attackers to upload .lnk files via unknown vectors. • http://www.argosoft.com/rootpages/FtpServer/ChangeList.aspx •
CVSS: 9.0EPSS: 5%CPEs: 1EXPL: 1CVE-2004-2673
https://notcve.org/view.php?id=CVE-2004-2673
31 Dec 2004 — Multiple buffer overflows in ArGoSoft FTP Server before 1.4.1.6 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via (1) a SITE ZIP command with a long first or second argument, or (2) a SITE COPY with a long argument. • http://secunia.com/advisories/11002 •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 1CVE-2004-2674
https://notcve.org/view.php?id=CVE-2004-2674
31 Dec 2004 — Directory traversal vulnerability in ArGoSoft FTP Server before 1.4.1.6 allows remote authenticated users to determine the existence of arbitrary files via ".." sequences in the SITE UNZIP argument. • http://secunia.com/advisories/11002 •
CVSS: 6.8EPSS: 5%CPEs: 1EXPL: 2CVE-2004-2675 – ArGoSoft FTP Server 1.0/1.2/1.4 - Multiple Vulnerabilities
https://notcve.org/view.php?id=CVE-2004-2675
31 Dec 2004 — ArGoSoft FTP Server before 1.4.1.6 allows remote authenticated users to cause a denial of service (crash) via a SITE PASS command with a long password parameter, which causes the database to be corrupted. • https://www.exploit-db.com/exploits/23769 •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 1CVE-2000-1194
https://notcve.org/view.php?id=CVE-2000-1194
31 Aug 2001 — Argosoft FRP server 1.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to the (1) USER or (2) CWD commands. • http://www.mdma.za.net/fk/FK9.zip •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 2CVE-2001-1142 – ArGoSoft FTP Server 1.2.2.2 - Weak Password Encryption
https://notcve.org/view.php?id=CVE-2001-1142
12 Jul 2001 — ArGoSoft FTP Server 1.2.2.2 uses weak encryption for user passwords, which allows an attacker with access to the password file to gain privileges. • https://www.exploit-db.com/exploits/21009 •