Aggregates CVE and security vulnerability intelligence across all electrasoft-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk buffer overflow and vendor risk denial of service and related security problems, affecting vendor surface production workloads and vendor surface software deployment scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2009-1675 | Stack-based buffer overflow in ElectraSoft 32bit FTP 09.04.24 allows remote FTP servers to execute arbitrary code via a long 227 reply to a PASV command. | [email protected] | 9.3 | 62.65% | 2009-05-18 | 2026-04-23 |
| CVE-2009-1611 | Stack-based buffer overflow in ElectraSoft 32bit FTP 09.04.24 allows remote FTP servers to execute arbitrary code via a long 257 reply to a CWD command. | [email protected] | 10.0 | 11.25% | 2009-05-11 | 2026-04-23 |
| CVE-2009-1592 | Stack-based buffer overflow in ElectraSoft 32bit FTP 09.04.24 allows remote FTP servers to execute arbitrary code via a long banner. NOTE: this might overlap CVE-2003-1368. | [email protected] | 10.0 | 21.03% | 2009-05-08 | 2026-04-23 |
| CVE-2003-1368 | Buffer overflow in the 32bit FTP client 9.49.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long FTP server banner. | [email protected] | 6.4 | 18.21% | 2003-12-31 | 2026-04-16 |