Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2012-4992 | 1 Flashfxp | 1 Flashfxp | 2024-11-21 | 9.0 HIGH | N/A |
Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow remote authenticated users to execute arbitrary code via a long unicode string to (1) TListbox or (2) TComboBox. | |||||
CVE-2007-0825 | 1 Flashfxp | 1 Flashfxp | 2024-11-21 | 7.8 HIGH | N/A |
FlashFXP 3.4.0 build 1145 allows remote servers to cause a denial of service (CPU consumption) via a response to a PWD command that contains a long string with deeply nested directory structure, possibly due to a buffer overflow. | |||||
CVE-2003-1483 | 1 Flashfxp | 1 Flashfxp | 2024-11-20 | 6.4 MEDIUM | N/A |
FlashFXP 1.4 uses a weak encryption algorithm for user passwords, which allows attackers to decrypt the passwords and gain access. | |||||
CVE-2002-1939 | 1 Flashfxp | 1 Flashfxp | 2024-11-20 | 2.1 LOW | N/A |
FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties. |