This page aggregates publicly disclosed CVE and security risk information related to conti, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2007-3492 | Conti FtpServer 1.0 allows remote authenticated users to cause a denial of service (daemon crash) via a certain string containing "//A:" in the argument to the LIST command. | [email protected] | 6.8 | 4.32% | 2007-06-29 | 2026-04-23 |
| CVE-2006-6950 | Directory traversal vulnerability in Conti FTPServer 1.0 Build 2.8 allows remote attackers to read arbitrary files and list arbitrary directories via a .. (dot dot) in a filename argument. | [email protected] | 5.0 | 2.06% | 2007-01-23 | 2026-04-23 |
| CVE-2006-6949 | Conti FTPServer 1.0 Build 2.8 stores user passwords in cleartext in MyServerSettings.ini, which allows local users to obtain sensitive information by reading this file. | [email protected] | 4.6 | 0.07% | 2007-01-23 | 2026-04-23 |