Lucene search
+L

211 matches found

cvelist
cvelist
added 2007/01/09 9:0 p.m.14 views

CVE-2004-2674

Directory traversal vulnerability in ArGoSoft FTP Server before 1.4.1.6 allows remote authenticated users to determine the existence of arbitrary files via ".." sequences in the SITE UNZIP argument...

6.3AI score0.01664EPSS
Exploits1References6
cvelist
cvelist
added 2007/01/09 9:0 p.m.23 views

CVE-2004-2675

ArGoSoft FTP Server before 1.4.1.6 allows remote authenticated users to cause a denial of service crash via a SITE PASS command with a long password parameter, which causes the database to be corrupted...

6.5AI score0.03229EPSS
Exploits1References6
cvelist
cvelist
added 2007/01/09 9:0 p.m.15 views

CVE-2004-2673

Multiple buffer overflows in ArGoSoft FTP Server before 1.4.1.6 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via 1 a SITE ZIP command with a long first or second argument, or 2 a SITE COPY with a long argument...

7.7AI score0.04765EPSS
Exploits1References6
cve
cve
added 2007/01/09 8:0 p.m.44 views

CVE-2004-2672

Affected product : ArGoSoft FTP Server prior to 1.4.2.2. Vulnerability : remote attacker can upload ".lnk" shortcut files, enabling arbitrary file manipulation due to an upload vulnerability. Impact : potential read and write access to files and directories on the FTP server. Root cause / vector ...

7.5CVSS6.5AI score0.01348EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2007/01/09 8:0 p.m.17 views

CVE-2004-2672

Unspecified vulnerability in ArGoSoft FTP server before 1.4.2.2 allows attackers to upload .lnk files via unknown vectors...

6.5AI score0.01348EPSS
Exploits0References1
securityvulns
securityvulns
added 2006/05/09 12:0 a.m.41 views

INFIGO-2006-05-03: Multiple FTP Servers vulnerabilities

INFIGO IS Security Advisory ADV-2006-05-03 http://www.infigo.hr/ Title: Multiple FTP Servers vulnerabilities Advisory ID: INFIGO-2006-05-03 Date: 2006-05-05 Advisory URL: http://www.infigo.hr/hr/infocus/advisories/INFIGO-2006-05-03 Impact: Remote code execution and DoS Risk Level: High...

0.7AI score
Exploits0
securityvulns
securityvulns
added 2006/05/09 12:0 a.m.56 views

Different FTP servers multiple security vulnerabilities

Multiple vulnerabilities were uncovered with FTP Fuzzer stress test suite. - ArgoSoft FTP Server RNTO Unicode overflow - Golden FTP Server NLST overflow - FileZilla FTP Server MLSD - FileZilla remote server interface homemade protocol - WarFTPD various exceptions and WDM.exe overflow...

2AI score
Exploits0References2
prion
prion
added 2006/05/04 12:38 p.m.16 views

Buffer overflow

Buffer overflow in ArgoSoft FTP Server 1.4.3.6 allows remote attackers to execute arbitrary code via Unicode in the RNTO command, as demonstrated by the Infigo FTPStress Fuzzer...

6.4CVSS8.3AI score0.053EPSS
Exploits1References9Affected Software1
nvd
nvd
added 2006/05/04 12:38 p.m.14 views

CVE-2006-2170

Buffer overflow in ArgoSoft FTP Server 1.4.3.6 allows remote attackers to execute arbitrary code via Unicode in the RNTO command, as demonstrated by the Infigo FTPStress Fuzzer...

6.4CVSS7.9AI score0.053EPSS
Exploits1References9
cve
cve
added 2006/05/04 10:0 a.m.46 views

CVE-2006-2170

CVE-2006-2170 affects ArgoSoft FTP Server 1.4.3.6. A buffer overflow is triggered by Unicode in the RNTO command, allowing remote attackers to execute arbitrary code. Exploitation was demonstrated by the Infigo FTPStress Fuzzer. The CVSS base score is 6.4 (Medium) with network access, low attack ...

6.4CVSS7.9AI score0.053EPSS
Exploits1References9Affected Software1
cvelist
cvelist
added 2006/05/04 10:0 a.m.18 views

CVE-2006-2170

Buffer overflow in ArgoSoft FTP Server 1.4.3.6 allows remote attackers to execute arbitrary code via Unicode in the RNTO command, as demonstrated by the Infigo FTPStress Fuzzer...

7.9AI score0.053EPSS
Exploits1References9
nessus
nessus
added 2006/05/04 12:0 a.m.29 views

ArGoSoft FTP Server RNTO Command Remote Buffer Overflow

The remote host is using ArGoSoft FTP Server, an FTP server for Windows. The version of ArGoSoft FTP Server installed on the remote host contains a buffer overflow vulnerability that can be exploited by an authenticated, but possibly anonymous, user with a specially crafted RNTO command to crash...

6.4CVSS6.2AI score0.053EPSS
Exploits1References2
nvd
nvd
added 2006/03/03 11:2 a.m.12 views

CVE-2006-0978

Multiple cross-site scripting XSS vulnerabilities in the View Headers aka viewheaders functionality in ArGoSoft Mail Server Pro 1.8.8.5 allow remote attackers to inject arbitrary web script or HTML via 1 the Subject header, 2 the From header, and 3 certain other unspecified headers...

4.3CVSS5.8AI score0.02106EPSS
Exploits0References8
prion
prion
added 2006/03/03 11:2 a.m.13 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the View Headers aka viewheaders functionality in ArGoSoft Mail Server Pro 1.8.8.5 allow remote attackers to inject arbitrary web script or HTML via 1 the Subject header, 2 the From header, and 3 certain other unspecified headers...

4.3CVSS5.9AI score0.02106EPSS
Exploits0References8Affected Software1
cve
cve
added 2006/03/03 11:0 a.m.55 views

CVE-2006-0978

The CVE-2006-0978 entry refers to multiple XSS vulnerabilities in the View Headers (viewheaders) functionality of ArGoSoft Mail Server Pro 1.8.8.5, allowing remote attackers to inject arbitrary web script or HTML via the Subject, From, and other headers. Connected sources corroborate the same iss...

4.3CVSS5.8AI score0.02106EPSS
Exploits0References8Affected Software1
cvelist
cvelist
added 2006/03/03 11:0 a.m.19 views

CVE-2006-0978

Multiple cross-site scripting XSS vulnerabilities in the View Headers aka viewheaders functionality in ArGoSoft Mail Server Pro 1.8.8.5 allow remote attackers to inject arbitrary web script or HTML via 1 the Subject header, 2 the From header, and 3 certain other unspecified headers...

5.8AI score0.02106EPSS
Exploits0References8
nvd
nvd
added 2006/02/28 11:2 a.m.16 views

CVE-2006-0930

Directory traversal vulnerability in Webmail in ArGoSoft Mail Server Pro 1.8 allows remote authenticated users to read arbitrary files via a .. dot dot in the UIDL parameter...

4CVSS6.2AI score0.01373EPSS
Exploits1References4
prion
prion
added 2006/02/28 11:2 a.m.17 views

Directory traversal

Directory traversal vulnerability in Webmail in ArGoSoft Mail Server Pro 1.8 allows remote authenticated users to read arbitrary files via a .. dot dot in the UIDL parameter...

4CVSS6.7AI score0.01373EPSS
Exploits1References4Affected Software1
prion
prion
added 2006/02/28 11:2 a.m.13 views

Code injection

The POP3 Server in ArGoSoft Mail Server Pro 1.8 allows remote attackers to obtain sensitive information via the DUMP command, which reveals the operating system, registered user, and registration code...

5CVSS6.4AI score0.02106EPSS
Exploits0References5Affected Software1
nvd
nvd
added 2006/02/28 11:2 a.m.16 views

CVE-2006-0928

The POP3 Server in ArGoSoft Mail Server Pro 1.8 allows remote attackers to obtain sensitive information via the DUMP command, which reveals the operating system, registered user, and registration code...

5CVSS6.2AI score0.02106EPSS
Exploits0References5
Rows per page
Query Builder