GCVE - cpe:2.3:a:progress:ws_ftp_server:4.0.2:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:progress:ws_ftp_server:4.0.2:*:*:*:*:*:*:*

part: a version: 4.0.2 update: *

Vendor	Progress (`f9d80521-f73f-5a85-8df9-9306f2f67809`)
Product	Ws Ftp Server (`7ffa19d4-ca51-5a19-8205-d8261d7ef2ca`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-4847`	vulnerable	2026-06-03 14:27:44.125059	Details available Multiple buffer overflows in Ipswitch WS_FTP Server 5.05 before Hotfix 1 allow remote authenticated users to execute arbitrary code via long (1) XCRC, (2) XSHA1, or (3) XMD5 commands. Published: 2006-09-19T01:00:00.000Z Updated: 2024-08-07T19:23:41.399Z Open on db.gcve.eu Reference links http://secunia.com/advisories/21932 http://ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp http://www.vupen.com/english/advisories/2006/3655 https://exchange.xforce.ibmcloud.com/vulnerabilities/28983 http://www.osvdb.org/28939	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-1885`	vulnerable	2026-06-03 14:26:45.695094	Details available Ipswitch WS_FTP Server 4.0.2 allows remote authenticated users to execute arbitrary programs as SYSTEM by using the SITE command to modify certain iFtpSvc options that are handled by iftpmgr.exe. Published: 2005-05-10T04:00:00.000Z Updated: 2024-08-08T01:07:48.590Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=108006581418116&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15558 http://secunia.com/advisories/11206 http://www.securityfocus.com/bid/9953	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-1884`	vulnerable	2026-06-03 14:26:45.694609	Details available Ipswitch WS_FTP Server 4.0.2 has a backdoor XXSESS_MGRYY username with a default password, which allows remote attackers to gain access. Published: 2005-05-10T04:00:00.000Z Updated: 2024-08-08T01:07:48.833Z Open on db.gcve.eu Reference links http://marc.info/?l=bugtraq&m=108006581418116&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15558 http://secunia.com/advisories/11206 http://www.securityfocus.com/bid/9953	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-1883`	vulnerable	2026-06-03 14:26:45.690450	Details available Multiple buffer overflows in Ipswitch WS_FTP Server 4.0.2 (1) allow remote authenticated users to execute arbitrary code by causing a large error string to be generated by the ALLO handler, or (2) may allow remote FTP administrators to execute arbitrary code by causing a long hostname or username to be inserted into a reply to a STAT command while a file is being transferred. Published: 2005-05-10T04:00:00.000Z Updated: 2024-08-08T01:07:48.899Z Open on db.gcve.eu Reference links http://secunia.com/advisories/11206 http://www.securityfocus.com/bid/9953 http://www.securityfocus.com/archive/1/358361 https://exchange.xforce.ibmcloud.com/vulnerabilities/15561 http://marc.info/?l=bugtraq&m=108006553222397&w=2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2004-1848`	vulnerable	2026-06-03 14:26:45.572381	Details available Ipswitch WS_FTP Server 4.0.2 allows remote attackers to cause a denial of service (disk consumption) and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file. Published: 2005-05-10T04:00:00.000Z Updated: 2024-08-08T01:07:48.800Z Open on db.gcve.eu Reference links http://secunia.com/advisories/11206 http://www.securityfocus.com/bid/9953 http://marc.info/?l=bugtraq&m=108006717731989&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/41831 http://www.osvdb.org/4542	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.