CVSS: 10.0EPSS: 11%CPEs: 19EXPL: 2CVE-2001-0187 – WU-FTPD 2.4.2/2.5/2.6 - Debug Mode Client Hostname Format String
https://notcve.org/view.php?id=CVE-2001-0187
26 Mar 2001 — Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a PASV port assignment. • https://www.exploit-db.com/exploits/20594 •
CVSS: 9.8EPSS: 4%CPEs: 3EXPL: 2CVE-2000-0909 – UoW Pine 4.0.4/4.10/4.21 - 'From:' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2000-0909
19 Dec 2000 — Buffer overflow in the automatic mail checking component of Pine 4.21 and earlier allows remote attackers to execute arbitrary commands via a long From: header. • https://www.exploit-db.com/exploits/20237 •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2000-0847
https://notcve.org/view.php?id=CVE-2000-0847
14 Nov 2000 — Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header. • http://archives.neohapsis.com/archives/bugtraq/2000-08/0425.html •
CVSS: 9.8EPSS: 10%CPEs: 20EXPL: 1CVE-2000-0574 – OpenBSD - 'ftp' Local Overflow
https://notcve.org/view.php?id=CVE-2000-0574
07 Jul 2000 — FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title), which allows remote attackers to cause a denial of service or execute arbitrary commands. • https://www.exploit-db.com/exploits/396 •
CVSS: 9.8EPSS: 92%CPEs: 1EXPL: 8CVE-2000-0284 – IMAP4rev1 10.190 - Authentication Stack Overflow
https://notcve.org/view.php?id=CVE-2000-0284
16 Apr 2000 — Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands. • https://www.exploit-db.com/exploits/253 •
CVSS: 9.8EPSS: 12%CPEs: 7EXPL: 1CVE-1999-0997 – WU-FTPD 2.4.2/2.5 .0/2.6.0/2.6.1/2.6.2 - FTP Conversion
https://notcve.org/view.php?id=CVE-1999-0997
20 Dec 1999 — wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress. • https://www.exploit-db.com/exploits/20563 •
CVSS: 10.0EPSS: 2%CPEs: 2EXPL: 0CVE-2000-0352
https://notcve.org/view.php?id=CVE-2000-0352
18 Nov 1999 — Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote attackers to execute arbitrary commands via a malformed URL. • ftp://ftp.calderasystems.com/pub/OpenLinux/security/CSSA-1999-036.0.txt •
CVSS: 10.0EPSS: 0%CPEs: 17EXPL: 0CVE-1999-0878
https://notcve.org/view.php?id=CVE-1999-0878
22 Aug 1999 — Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR. • http://www.securityfocus.com/bid/599 •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 1CVE-2000-0353
https://notcve.org/view.php?id=CVE-2000-0353
28 Jun 1999 — Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web server, which is then executed by Pine. • http://www.novell.com/linux/security/advisories/pine_update_announcement.html •
CVSS: 10.0EPSS: 4%CPEs: 2EXPL: 1CVE-1999-0920 – University of Washington pop2d 4.4 - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0920
26 May 1999 — Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command. • https://www.exploit-db.com/exploits/19226 •