CVSS: 9.1EPSS: 3%CPEs: 1EXPL: 2CVE-2000-1033 – Cat Soft Serv-U FTP Server 2.5.x - Brute Force
https://notcve.org/view.php?id=CVE-2000-1033
29 Nov 2000 — Serv-U FTP Server allows remote attackers to bypass its anti-hammering feature by first logging on as a valid user (possibly anonymous) and then attempting to guess the passwords of other users. • https://www.exploit-db.com/exploits/20334 •
CVSS: 5.3EPSS: 0%CPEs: 6EXPL: 1CVE-2000-0176
https://notcve.org/view.php?id=CVE-2000-0176
29 Feb 2000 — The default configuration of Serv-U 2.5d and earlier allows remote attackers to determine the real pathname of the server by requesting a URL for a directory or file that does not exist. • http://archives.neohapsis.com/archives/bugtraq/2000-02/0417.html •
CVSS: 7.8EPSS: 4%CPEs: 1EXPL: 1CVE-1999-0219 – Cat Soft Serv-U FTP Server 2.5 - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-1999-0219
01 Jul 1997 — Buffer overflow in FTP Serv-U 2.5 allows remote authenticated users to cause a denial of service (crash) via a long (1) CWD or (2) LS (list) command. • https://www.exploit-db.com/exploits/19218 •