Vulnerabilities (CVE)

Filtered by vendor Flashfxp Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-4992 1 Flashfxp 1 Flashfxp 2024-11-21 9.0 HIGH N/A
Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow remote authenticated users to execute arbitrary code via a long unicode string to (1) TListbox or (2) TComboBox.
CVE-2007-0825 1 Flashfxp 1 Flashfxp 2024-11-21 7.8 HIGH N/A
FlashFXP 3.4.0 build 1145 allows remote servers to cause a denial of service (CPU consumption) via a response to a PWD command that contains a long string with deeply nested directory structure, possibly due to a buffer overflow.
CVE-2003-1483 1 Flashfxp 1 Flashfxp 2024-11-20 6.4 MEDIUM N/A
FlashFXP 1.4 uses a weak encryption algorithm for user passwords, which allows attackers to decrypt the passwords and gain access.
CVE-2002-1939 1 Flashfxp 1 Flashfxp 2024-11-20 2.1 LOW N/A
FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties.