Globalscape

globalscape

13 CVEs • 3 products

Products (3)

Click to collapse

Toggle

Secure Ftp Server

secure_ftp_server

CVEs (13)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-1190 1Globalscape 1Cuteftp Nov 21, 2024 Feb 2, 2024 N/A· v4 5.5 MEDIUM· v3 1.7 LOW· v2 A vulnerability was found in Global Scape CuteFTP 9.3.0.3 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument Host/Username/Password leads to denial of se...Show more A vulnerability was found in Global Scape CuteFTP 9.3.0.3 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument Host/Username/Password leads to denial of service. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-252680. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2023-2991 1Globalscape 1Eft Server Nov 21, 2024 Jun 22, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Fortra Globalscape EFT's administration server suffers from an information disclosure vulnerability where the serial number of the harddrive that Globalscape is installed on can be remotely determined via a "trial extens...Show more Fortra Globalscape EFT's administration server suffers from an information disclosure vulnerability where the serial number of the harddrive that Globalscape is installed on can be remotely determined via a "trial extension request" message Show less
CVE-2023-2990 1Globalscape 1Eft Server Nov 21, 2024 Jun 22, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Fortra Globalscape EFT versions before 8.1.0.16 suffer from a denial of service vulnerability, where a compressed message that decompresses to itself can cause infinite recursion and crash the service
CVE-2023-2989 1Globalscape 1Eft Server Nov 21, 2024 Jun 22, 2023 N/A· v4 9.1 CRITICAL· v3 N/A· v2 Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their administration server, which can allow an attacker to crash the service or bypass authentication if successfully exploited...Show more Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their administration server, which can allow an attacker to crash the service or bypass authentication if successfully exploited Show less
CVE-2009-3483 1Globalscape 1Cuteftp Apr 23, 2026 Sep 30, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in the Create New Site feature in GlobalSCAPE CuteFTP Professional, Home, and Lite 8.3.3 and 8.3.3.0054 allows user-assisted remote attackers to cause a denial of service (memory corruption) or...Show more Heap-based buffer overflow in the Create New Site feature in GlobalSCAPE CuteFTP Professional, Home, and Lite 8.3.3 and 8.3.3.0054 allows user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a site list containing an entry with a long label.Show less
CVE-2008-2779 1Globalscape 1Cuteftp Apr 23, 2026 Jun 19, 2008 N/A· v4 N/A· v3 9.3 HIGH· v2 Directory traversal vulnerability in GlobalSCAPE CuteFTP Home 8.2.0 Build 02.26.2008.4 and CuteFTP Pro 8.2.0 Build 04.01.2008.1 allows remote FTP servers to create or overwrite arbitrary files via ..\ (dot dot backslash)...Show more Directory traversal vulnerability in GlobalSCAPE CuteFTP Home 8.2.0 Build 02.26.2008.4 and CuteFTP Pro 8.2.0 Build 04.01.2008.1 allows remote FTP servers to create or overwrite arbitrary files via ..\ (dot dot backslash) sequences in responses to LIST commands, a related issue to CVE-2002-1345. NOTE: this can be leveraged for code execution by writing to a Startup folder.Show less
CVE-2006-1693 1Globalscape 1Secure Ftp Server Apr 16, 2026 Apr 11, 2006 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Unspecified vulnerability in GlobalSCAPE Secure FTP Server before 3.1.4 Build 01.10.2006 allows attackers to cause a denial of service (application crash) via a "custom command" with a long argument.
CVE-2005-1415 1Globalscape 1Secure Ftp Server Apr 16, 2026 May 3, 2005 N/A· v4 N/A· v3 10.0 HIGH· v2 Buffer overflow in GlobalSCAPE Secure FTP Server 3.0.2 allows remote authenticated users to execute arbitrary code via a long FTP command.
CVE-2004-1136 1Globalscape 1Cuteftp Apr 16, 2026 Jan 10, 2005 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Buffer overflow in CuteFTP Professional 6.0, and possibly other versions, allows remote FTP servers to cause a denial of service (application crash) via large replies to FTP commands.
CVE-2004-2366 1Globalscape 1Secure Ftp Server Apr 16, 2026 Dec 31, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Buffer overflow in GlobalSCAPE Secure FTP Server 2.0 B03.11.2004.2 allows remote attackers to cause a denial of service (crash) via a SITE command with a long argument.
CVE-2003-1261 1Globalscape 1Cuteftp Apr 16, 2026 Dec 31, 2003 N/A· v4 N/A· v3 2.1 LOW· v2 Buffer overflow in CuteFTP 5.0 and 5.0.1 allows local users to cause a denial of service (crash) by copying a long URL into a clipboard.
CVE-2003-1260 1Globalscape 1Cuteftp Apr 16, 2026 Dec 31, 2003 N/A· v4 N/A· v3 7.6 HIGH· v2 Buffer overflow in CuteFTP 5.0 allows remote attackers to execute arbitrary code via a long response to a LIST command.
CVE-2000-0084 1Globalscape 1Cuteftp Apr 16, 2026 Jan 6, 2000 N/A· v4 N/A· v3 5.0 MEDIUM· v2 CuteFTP uses weak encryption to store password information in its tree.dat file.