CVE-2006-5000 – Ipswitch WS_FTP Server Checksum Command Parsing Buffer Overflow Vulnerabilities
https://notcve.org/view.php?id=CVE-2006-5000
Multiple buffer overflows in WS_FTP Server 5.05 before Hotfix 1, and possibly other versions down to 5.0, have unknown impact and remote authenticated attack vectors via the (1) XCRC, (2) XMD5, and (3) XSHA1 commands. NOTE: in the early publication of this identifier on 20060926, the description was used for the wrong issue. Múltiples desbordamientos de búfer en WS_FTP Server 5.05 anterior a Hotfix 1, y posiblemente otras versiones anteriores a la 5.0, tienen impacto y vectores de ataque remotos autenticados desconocidos mediante los comandos (1) XCRC, (2) XMD5, y (3) XSHA1. NOTA: en la publicación anterior de este identificador en 26/09/2006, la descripción fue usada por el asunto equivocado. This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Ipswitch WS_FTP Server. • http://securitytracker.com/id?1016935 http://www.ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp http://www.securityfocus.com/archive/1/447077/100/0/threaded http://www.zerodayinitiative.com/advisories/ZDI-06-029.html https://exchange.xforce.ibmcloud.com/vulnerabilities/41829 •
CVE-2006-4974 – Ipswitch WS_FTP LE 5.08 - PASV Response Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-4974
Buffer overflow in Ipswitch WS_FTP Limited Edition (LE) 5.08 allows remote FTP servers to execute arbitrary code via a long response to a PASV command. Desbordamiento de búfer en Ipswitch WS_FTP Limited Edition (LE) 5.08 permite a un a servidores FTP remotos ejecutar código de su elección a través de un repuesta grande a un comando PASV. • https://www.exploit-db.com/exploits/2401 http://secunia.com/advisories/22032 http://www.osvdb.org/29125 http://www.securityfocus.com/bid/20121 https://exchange.xforce.ibmcloud.com/vulnerabilities/29074 •
CVE-2006-4847 – Ipswitch WS_FTP Server 5.05 - XMD5 Overflow
https://notcve.org/view.php?id=CVE-2006-4847
Multiple buffer overflows in Ipswitch WS_FTP Server 5.05 before Hotfix 1 allow remote authenticated users to execute arbitrary code via long (1) XCRC, (2) XSHA1, or (3) XMD5 commands. Múltiples desbordamientos de búfer en Ipswitch WS_FTP Server 5.05 anterior al Hotfix 1 permiten a usuarios autenticados remotamente ejecutar código de su elección a través de comandos largos (1) XCRC, (2) XSHA1, o (3) XMD5. • https://www.exploit-db.com/exploits/16717 https://www.exploit-db.com/exploits/3335 http://ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp http://secunia.com/advisories/21932 http://www.osvdb.org/28939 http://www.securityfocus.com/bid/20076 http://www.vupen.com/english/advisories/2006/3655 https://exchange.xforce.ibmcloud.com/vulnerabilities/28983 •
CVE-2004-1848
https://notcve.org/view.php?id=CVE-2004-1848
Ipswitch WS_FTP Server 4.0.2 allows remote attackers to cause a denial of service (disk consumption) and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file. • http://marc.info/?l=bugtraq&m=108006717731989&w=2 http://secunia.com/advisories/11206 http://securitytracker.com/id?1009529 http://www.osvdb.org/4542 http://www.securityfocus.com/bid/9953 https://exchange.xforce.ibmcloud.com/vulnerabilities/15560 https://exchange.xforce.ibmcloud.com/vulnerabilities/41831 • CWE-399: Resource Management Errors •
CVE-2004-1135 – Ipswitch WS_FTP Server 5.03 - MKD Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2004-1135
Multiple buffer overflows in WS_FTP Server 5.03 2004.10.14 allow remote attackers to cause a denial of service (service crash) via long (1) SITE, (2) XMKD, (3) MKD, and (4) RNFR commands. • https://www.exploit-db.com/exploits/664 https://www.exploit-db.com/exploits/16719 http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/029600.html http://marc.info/?l=bugtraq&m=110177654524819&w=2 http://www.securiteam.com/exploits/6D00L2KBPG.html https://exchange.xforce.ibmcloud.com/vulnerabilities/18296 •