CVSS: 7.5EPSS: 10%CPEs: 3EXPL: 0CVE-2005-0696
https://notcve.org/view.php?id=CVE-2005-0696
Buffer overflow in ArGoSoft FTP Server 1.4.2.8 allows remote authenticated users to execute arbitrary code via a long DELE command. NOTE: this issue was later reported to also affect 1.4.3.5. • http://lists.grok.org.uk/pipermail/full-disclosure/2006-February/042523.html http://secunia.com/advisories/14526 http://securityreason.com/securityalert/494 http://securitytracker.com/id?1015681 http://www.securityfocus.com/archive/1/392653 http://www.securityfocus.com/archive/1/426081/100/0/threaded http://www.securityfocus.com/bid/12755 https://www.securinfos.info/english/security-advisories-alerts/20060225_ArGoSoft.FTP.Server_Heap.Overflow.html •
CVSS: 10.0EPSS: 1%CPEs: 12EXPL: 0CVE-2005-0520
https://notcve.org/view.php?id=CVE-2005-0520
ArGoSoft FTP Server before 1.4.2.8 allows remote attackers to read arbitrary files via shortcut (.LNK) files in the SITE COPY command, a different vulnerability than CVE-2005-0519. • http://secunia.com/advisories/14372 http://www.argosoft.com/ftpserver/changelist.aspx http://www.osvdb.org/14061 http://www.securityfocus.com/bid/12632 https://exchange.xforce.ibmcloud.com/vulnerabilities/19442 •
CVSS: 10.0EPSS: 1%CPEs: 12EXPL: 0CVE-2005-0519
https://notcve.org/view.php?id=CVE-2005-0519
ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (.LNK) file, using SITE UNZIP to extract the .LNK file onto the server, then accessing the file, a different vulnerability than CVE-2005-0520. • http://secunia.com/advisories/14172 http://www.argosoft.com/ftpserver/changelist.aspx http://www.osvdb.org/13614 http://www.securityfocus.com/bid/12487 https://exchange.xforce.ibmcloud.com/vulnerabilities/17939 •
CVSS: 4.6EPSS: 0%CPEs: 1EXPL: 1CVE-2005-0367
https://notcve.org/view.php?id=CVE-2005-0367
Multiple directory traversal vulnerabilities in ArGoSoft Mail Server 1.8.7.3 allow remote authenticated users to read, delete, or upload arbitrary files via a .. (dot dot) in (1) the filename of an e-mail attachment, (2) the _msgatt.rec file, (3) and the /msg, /delete, /folderadd, and /folderdelete operations for the Folder parameter. • http://marc.info/?l=bugtraq&m=110796956011699&w=2 http://www.security.org.sg/vuln/argosoftmail1873.html •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0CVE-2004-1428
https://notcve.org/view.php?id=CVE-2004-1428
ArGoSoft FTP before 1.4.2.1 generates an error message if the user name does not exist instead of prompting for a password, which allows remote attackers to determine valid usernames. • http://marc.info/?l=bugtraq&m=110451582011666&w=2 http://secunia.com/advisories/13063 http://securitytracker.com/id?1012744 http://www.argosoft.com/ftpserver/changelist.aspx http://www.lovebug.org/argosoft_advisory.txt http://www.osvdb.org/11335 http://www.securityfocus.com/bid/12139 https://exchange.xforce.ibmcloud.com/vulnerabilities/18721 • CWE-203: Observable Discrepancy •