Total
5 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2010-5219 | 1 Smartftp | 1 Smartftp | 2024-11-21 | 6.9 MEDIUM | N/A |
Untrusted search path vulnerability in SmartFTP 4.0.1140.0 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .txt, .html, or .mpg file. NOTE: some of these details are obtained from third party information. | |||||
CVE-2010-4871 | 1 Smartftp | 1 Smartftp | 2024-11-21 | 10.0 HIGH | N/A |
Unspecified vulnerability in SmartFTP before 4.0 Build 1142 allows attackers to have an unknown impact via a long filename. | |||||
CVE-2010-3099 | 1 Smartftp | 1 Smartftp | 2024-11-21 | 9.3 HIGH | N/A |
Directory traversal vulnerability in SmartSoft Ltd SmartFTP Client 4.0.1124.0, and possibly other versions before 4.0 Build 1133, allows remote FTP servers to overwrite arbitrary files via a "..\" (dot dot backslash) in a filename. NOTE: some of these details are obtained from third party information. | |||||
CVE-2007-0790 | 1 Smartftp | 1 Smartftp | 2024-11-21 | 7.5 HIGH | N/A |
Heap-based buffer overflow in SmartFTP 2.0.1002 allows remote FTP servers to execute arbitrary code via a large banner. | |||||
CVE-2003-1319 | 1 Smartftp | 1 Smartftp | 2024-11-20 | 7.6 HIGH | N/A |
Multiple buffer overflows in SmartFTP 1.0.973, and other versions before 1.0.976, allow remote attackers to execute arbitrary code via (1) a long response to a PWD command, which triggers a stack-based overflow, and (2) a long line in a response to a file LIST command, which triggers a heap-based overflow. |