CVSS: 7.2EPSS: 31%CPEs: 1EXPL: 2CVE-2004-1885
https://notcve.org/view.php?id=CVE-2004-1885
Ipswitch WS_FTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc options that are handled by iftpmgr.exe. • http://marc.info/?l=bugtraq&m=108006581418116&w=2 http://secunia.com/advisories/11206 http://www.securityfocus.com/bid/9953 https://exchange.xforce.ibmcloud.com/vulnerabilities/15558 •
CVSS: 7.5EPSS: 0%CPEs: 24EXPL: 2CVE-2004-1884
https://notcve.org/view.php?id=CVE-2004-1884
Ipswitch WS_FTP Server 4.0.2 has a backdoor XXSESS_MGRYY username with a default password, which allows remote attackers to gain access. • http://marc.info/?l=bugtraq&m=108006581418116&w=2 http://secunia.com/advisories/11206 http://www.securityfocus.com/bid/9953 https://exchange.xforce.ibmcloud.com/vulnerabilities/15558 •
CVSS: 7.5EPSS: 95%CPEs: 2EXPL: 2CVE-2003-0772 – Ipswitch WS_FTP Server 3.4/4.0 - FTP Command Buffer Overrun
https://notcve.org/view.php?id=CVE-2003-0772
Multiple buffer overflows in WS_FTP 3 and 4 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via long (1) APPE (append) or (2) STAT (status) arguments. Múltiples desboradamientos de búfer en WS_FTP 3 y 4 permite a usuarios remotos autenticados causar una denegación de servicio y posiblemente ejecutar código arbitrario mediaten argumentos APPEND o STAT (estado) largos. • https://www.exploit-db.com/exploits/23100 http://marc.info/?l=bugtraq&m=106288825902868&w=2 http://secunia.com/advisories/9671 http://www.kb.cert.org/vuls/id/219140 http://www.kb.cert.org/vuls/id/792284 http://www.securityfocus.com/bid/8542 https://exchange.xforce.ibmcloud.com/vulnerabilities/13119 •