This page lists publicly disclosed CVE vulnerabilities affecting etype eserv (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2008-4588 | Stack-based buffer overflow in the FTP server in Etype Eserv 3.x, possibly 3.26, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long argument to the ABOR command. | [email protected] | 10.0 | 28.49% | 2008-10-15 | 2026-04-23 |
| CVE-2006-2309 | The HTTP service in EServ/3 3.25 allows remote attackers to obtain sensitive information via crafted HTTP requests containing dot, space, and slash characters, which reveals the source code of script files. | [email protected] | 4.0 | 0.22% | 2006-06-02 | 2026-04-16 |
| CVE-2006-2308 | Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other user's email messages, create/rename arbitrary directories on the system, and delete empty directories via directory traversal sequences in the (1) CREATE, (2) SELECT, (3) DELETE, (4) RENAME, (5) COPY or (6) APPEND commands. | [email protected] | 5.5 | 2.23% | 2006-06-02 | 2026-04-16 |
| CVE-2003-1266 | The (1) FTP, (2) POP3, (3) SMTP, and (4) NNTP servers in EServer 2.92 through 2.97, and possibly 2.98, allow remote attackers to cause a denial of service (crash) via a large amount of data. | [email protected] | 5.0 | 12.26% | 2003-12-31 | 2026-04-16 |
| CVE-2003-0290 | Memory leak in eServ 2.9x allows remote attackers to cause a denial of service (memory exhaustion) via a large number of connections, whose memory is not freed when the connection is terminated. | [email protected] | 5.0 | 13.34% | 2003-06-16 | 2026-04-16 |
| CVE-2002-0222 | Etype Eserv 2.97 allows remote attackers to redirect traffic to other sites (aka FTP bounce) via the PORT command. | [email protected] | 7.5 | 0.72% | 2002-05-16 | 2026-04-16 |
| CVE-2002-0221 | Etype Eserv 2.97 allows remote attackers to cause a denial of service (resource exhaustion) via a large number of PASV commands that consume ports 1024 through 5000, which prevents the server from accepting valid PASV. | [email protected] | 5.0 | 0.74% | 2002-05-16 | 2026-04-16 |
| CVE-2002-0112 | Etype Eserv 2.97 allows remote attackers to view password protected files via /./ in the URL. | [email protected] | 5.0 | 7.50% | 2002-03-25 | 2026-04-16 |
| CVE-2000-0907 | EServ 2.92 Build 2982 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via long HELO and MAIL FROM commands. | [email protected] | 7.5 | 2.16% | 2000-12-19 | 2026-04-16 |
| CVE-2000-0523 | Buffer overflow in the logging feature of EServ 2.9.2 and earlier allows an attacker to execute arbitrary commands via a long MKD command. | [email protected] | 10.0 | 4.62% | 2000-06-06 | 2026-04-16 |
| CVE-1999-1509 | Directory traversal vulnerability in Etype Eserv 2.50 web server allows a remote attacker to read any file in the file system via a .. (dot dot) in a URL. | [email protected] | 5.0 | 3.45% | 1999-11-04 | 2026-04-16 |