Every CVE whose affected-product data names Freeftpd, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2012-6067 — CVSS 10.0 (critical): freeFTPd.exe in freeFTPd through 1.0.11 allows remote attackers to bypass authentication via a crafted SFTP session, as demonstrated by an…
CVE-2013-10042 — CVSS 9.8 (critical): A stack-based buffer overflow vulnerability exists in freeFTPd version 1.0.10 and earlier in the handling of the FTP PASS command. When an…
CVE-2019-19383 — CVSS 8.8 (high): freeFTPd 1.0.8 has a Post-Authentication Buffer Overflow via a crafted SIZE command (this is exploitable even if logging is disabled).
CVE-2006-2407 — CVSS 7.5 (high): Stack-based buffer overflow in (1) WeOnlyDo wodSSHServer ActiveX Component 1.2.7 and 1.3.3 DEMO, as used in other products including (2)…
CVE-2005-3684 — CVSS 7.5 (high): Multiple buffer overflows in freeFTPd 1.0.8, without logging enabled, allow remote authenticated attackers to cause a denial of service…
CVE-2005-3683 — CVSS 7.5 (high): Stack-based buffer overflow in freeFTPd before 1.0.9 with Logging enabled, allows remote attackers to cause a denial of service…
CVE-2005-3812 — CVSS 6.8 (medium): freeFTPd 1.0.10 allows remote authenticated users to cause a denial of service (null dereference and crash) via a PORT command with missing…