texas_imperial_software 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
公開された問題は パス処理の欠陥 and バッファオーバーフロー に関連することが多く、vendor surface software deployment and vendor surface production workloads の文脈で アプリケーションクラッシュ and vendor impact memory corruption などの暴露リスクを伴う場合があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2007-6473 | Heap-based buffer overflow in Texas Imperial Software WFTPD Pro Explorer 1.0 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command. | [email protected] | 5.8 | 4.10% | 2007-12-20 | 2026-04-23 |
| CVE-2007-0311 | Texas Imperial Software WFTPD and WFTPD Pro Server 3.25 and earlier allow remote attackers to cause a denial of service (application crash) via a long SITE ADMIN command. | [email protected] | 5.0 | 5.08% | 2007-01-18 | 2026-04-23 |
| CVE-2006-5826 | Buffer overflow in Texas Imperial Software WFTPD Pro Server 3.23.1.1 allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via crafted APPE commands that contain "/" (slash) or "\" (backslash) characters. | [email protected] | 5.8 | 17.61% | 2006-11-10 | 2026-04-23 |
| CVE-2006-4318 | Buffer overflow in WFTPD Server 3.23 allows remote attackers to execute arbitrary code via long SIZE commands. | [email protected] | 6.5 | 79.75% | 2006-08-24 | 2026-04-16 |
| CVE-2004-0341 | WFTPD Pro Server 3.21 Release 1 allocates memory for a command until a 0Ah byte (newline) is sent, which allows local users to cause a denial of service (CPU consumption) by continuing to send a long command that does not contain a newline. | [email protected] | 2.1 | 0.07% | 2004-11-23 | 2026-04-16 |
| CVE-2004-0340 | Stack-based buffer overflow in WFTPD Pro Server 3.21 Release 1, Pro Server 3.20 Release 2, Server 3.21 Release 1, and Server 3.10 allows local users to execute arbitrary code via long (1) LIST, (2) NLST, or (3) STAT commands. | [email protected] | 7.2 | 0.14% | 2004-11-23 | 2026-04-16 |
| CVE-2004-1642 | WFTPD Pro Server 3.21 allows remote authenticated users to cause a denial of service (crash) via a series of long MLIST commands. | [email protected] | 5.0 | 6.02% | 2004-08-29 | 2026-04-16 |
| CVE-2001-0695 | WFTPD 3.00 R5 allows a remote attacker to cause a denial of service by making repeated requests to cd to the floppy drive (A:\). | [email protected] | 5.0 | 0.79% | 2001-09-20 | 2026-04-16 |
| CVE-2001-0694 | Directory traversal vulnerability in WFTPD 3.00 R5 allows a remote attacker to view arbitrary files via a dot dot attack in the CD command. | [email protected] | 7.5 | 3.02% | 2001-09-20 | 2026-04-16 |
| CVE-2001-0296 | Buffer overflow in WFTPD Pro 3.00 allows remote attackers to execute arbitrary commands via a long CWD command. | [email protected] | 10.0 | 6.96% | 2001-05-03 | 2026-04-16 |
| CVE-2000-1101 | Directory traversal vulnerability in Winsock FTPd (WFTPD) 3.00 and 2.41 with the "Restrict to home directory" option enabled allows local users to escape the home directory via a "/../" string, a variation of the .. (dot dot) attack. | [email protected] | 5.0 | 0.24% | 2001-01-09 | 2026-04-16 |
| CVE-2000-0876 | WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a "%C" command, which generates an error message that includes the pathname. | [email protected] | 5.0 | 0.73% | 2000-11-14 | 2026-04-16 |
| CVE-2000-0875 | WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to cause a denial of service by sending a long string of unprintable characters. | [email protected] | 5.0 | 0.74% | 2000-11-14 | 2026-04-16 |
| CVE-2000-0647 | WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing an MLST command before logging into the server. | [email protected] | 5.0 | 4.47% | 2000-07-21 | 2026-04-16 |
| CVE-2000-0646 | WFTPD and WFTPD Pro 2.41 allows remote attackers to obtain the real pathname for a file by executing a STATUS (STAT) command while the file is being transferred. | [email protected] | 5.0 | 0.72% | 2000-07-21 | 2026-04-16 |
| CVE-2000-0645 | WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by using the RESTART (REST) command and writing beyond the end of a file, or writing to a file that does not exist, via commands such as STORE UNIQUE (STOU), STORE (STOR), or APPEND (APPE). | [email protected] | 6.4 | 3.98% | 2000-07-21 | 2026-04-16 |
| CVE-2000-0644 | WFTPD and WFTPD Pro 2.41 allows remote attackers to cause a denial of service by executing a STAT command while the LIST command is still executing. | [email protected] | 5.0 | 8.00% | 2000-07-21 | 2026-04-16 |
| CVE-2000-0648 | WFTPD and WFTPD Pro 2.41 allows local users to cause a denial of service by executing the RENAME TO (RNTO) command before a RENAME FROM (RNFR) command. | [email protected] | 5.0 | 1.39% | 2000-07-11 | 2026-04-16 |
| CVE-1999-0950 | Buffer overflow in WFTPD FTP server allows remote attackers to gain root access via a series of MKD and CWD commands that create nested directories. | [email protected] | 10.0 | 5.13% | 1999-10-28 | 2026-04-16 |