This page aggregates publicly disclosed CVE and security risk information related to bolintech, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2007-0338 | Heap-based buffer overflow in Dream FTP Server allows remote attackers to execute arbitrary code via a USER command with a large number of format string specifiers, which triggers the overflow during processing of the Server Log. | [email protected] | 7.5 | 25.51% | 2007-01-18 | 2026-04-23 |
| CVE-2006-6724 | BolinTech Dream FTP Server 1.02 allows remote authenticated users, including anonymous users, to cause a denial of service (application crash) via a certain invalid PORT command. | [email protected] | 4.0 | 6.65% | 2006-12-26 | 2026-04-23 |
| CVE-2004-2074 | Format string vulnerability in Dream FTP 1.02 allows local users to cause a denial of service (crash) via format string specifiers in the (1) PASS or (2) RETR commands. | [email protected] | 5.0 | 55.56% | 2004-12-31 | 2026-04-16 |
| CVE-2004-0277 | Format string vulnerability in Dream FTP 1.02 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in the username. | [email protected] | 10.0 | 8.07% | 2004-11-23 | 2026-04-16 |