Filtered by vendor Flashfxp Subscriptions
Total 5 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2012-4992 1 Flashfxp 1 Flashfxp 2024-11-21 N/A
Multiple buffer overflows in FlashFXP.exe in FlashFXP 4.2 allow remote authenticated users to execute arbitrary code via a long unicode string to (1) TListbox or (2) TComboBox.
CVE-2007-0825 1 Flashfxp 1 Flashfxp 2024-11-21 N/A
FlashFXP 3.4.0 build 1145 allows remote servers to cause a denial of service (CPU consumption) via a response to a PWD command that contains a long string with deeply nested directory structure, possibly due to a buffer overflow.
CVE-2003-1483 1 Flashfxp 1 Flashfxp 2024-11-21 N/A
FlashFXP 1.4 uses a weak encryption algorithm for user passwords, which allows attackers to decrypt the passwords and gain access.
CVE-2002-1939 1 Flashfxp 1 Flashfxp 2024-11-21 N/A
FlashFXP 1.4 prints FTP passwords in plaintext when there are transfers in the queue, which allows attackers to obtain FTP passwords of other users by editing the queue properties.
CVE-2024-10068 1 Flashfxp 1 Flashfxp 2024-10-18 7.8 High
A vulnerability was found in OpenSight Software FlashFXP 5.4.0.3970. It has been classified as critical. Affected is an unknown function in the library libcrypto-1_1.dll of the file FlashFXP.exe. The manipulation leads to uncontrolled search path. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.