floosietek 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
公開された問題は バッファオーバーフロー、vendor risk denial of service, and vendor risk cross-site scripting に関連することが多く、vendor surface software deployment and vendor surface production workloads の文脈で アプリケーションクラッシュ and vendor impact memory corruption などの暴露リスクを伴う場合があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2005-4569 | Stack-based buffer overflow in index.fts in FTGate Technology (formerly known as Floosietek) FTGate 4.4 (aka Build 4.4.000 Oct 26 2005) allows remote attackers to execute arbitrary code via a long tzoffset value. | [email protected] | 7.5 | 18.25% | 2005-12-29 | 2026-04-16 |
| CVE-2005-4568 | Multiple format string vulnerabilities in FTGate Technology (formerly known as Floosietek) FTGate 4.4 (aka Build 4.4.000 Oct 26 2005) allow remote attackers to execute arbitrary code via format string specifiers in the (1) USER, (2) PASS, and (3) TOP commands to the POP3 server; and the (4) LIST and (5) AUTHENTICATE commands to the IMAP server. | [email protected] | 7.5 | 2.96% | 2005-12-29 | 2026-04-16 |
| CVE-2005-4567 | Multiple cross-site scripting (XSS) vulnerabilities in FTGate Technology (formerly known as Floosietek) FTGate 4.4 (Build 4.4.000 Oct 26 2005) allow remote attackers to inject arbitrary web script or HTML by sending (1) the href parameter to index.fts, or the param1 parameter to (2) /domains/index.fts, (3) /config/licence.fts, or (4) /config/systemacl.fts. | [email protected] | 5.8 | 0.71% | 2005-12-29 | 2026-04-16 |
| CVE-2005-3640 | Multiple buffer overflows in the IMAP Groupware Mail server of Floosietek FTGate (FTGate4) 4.1 allow remote attackers to execute arbitrary code via long arguments to various IMAP commands, as demonstrated with the EXAMINE command. | [email protected] | 10.0 | 8.45% | 2005-11-16 | 2026-04-16 |
| CVE-2003-0263 | Multiple buffer overflows in Floosietek FTGate Pro Mail Server (FTGatePro) 1.22 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands. | [email protected] | 7.5 | 20.08% | 2003-05-27 | 2026-04-16 |
| CVE-2002-2082 | FTGate and FTGate Pro 1.05 lock user mailboxes before authentication succeeds, which allows remote attackers to lock the mailboxes of other users. | [email protected] | 7.5 | 0.49% | 2002-12-31 | 2026-04-16 |
| CVE-2002-2080 | Floositek FTGate PRO 1.05 allows remote attackers to cause a denial of service (memory and CPU consumption) via a large number of RCPT TO: messages during an SMTP session. | [email protected] | 5.0 | 0.48% | 2002-12-31 | 2026-04-16 |
| CVE-2002-2078 | Heap-based buffer overflow in Floositek (1) FTGate Pro 1.05 and (2) FTGate Office 1.05 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long POP3 APOP USER command. | [email protected] | 7.5 | 1.21% | 2002-12-31 | 2026-04-16 |
| CVE-2000-1237 | The POP3 server in FTGate returns an -ERR code after receiving an invalid USER request, which makes it easier for remote attackers to determine valid usernames and conduct brute force password guessing. | [email protected] | 5.0 | 0.35% | 2000-12-31 | 2026-04-16 |
| CVE-1999-0887 | FTGate web interface server allows remote attackers to read files via a .. (dot dot) attack. | [email protected] | 5.0 | 3.62% | 1999-11-04 | 2026-04-16 |