211 matches found
CVE-2004-2674
Directory traversal vulnerability in ArGoSoft FTP Server before 1.4.1.6 allows remote authenticated users to determine the existence of arbitrary files via ".." sequences in the SITE UNZIP argument...
CVE-2004-2675
ArGoSoft FTP Server before 1.4.1.6 allows remote authenticated users to cause a denial of service crash via a SITE PASS command with a long password parameter, which causes the database to be corrupted...
CVE-2004-2673
Multiple buffer overflows in ArGoSoft FTP Server before 1.4.1.6 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via 1 a SITE ZIP command with a long first or second argument, or 2 a SITE COPY with a long argument...
CVE-2004-2672
Affected product : ArGoSoft FTP Server prior to 1.4.2.2. Vulnerability : remote attacker can upload ".lnk" shortcut files, enabling arbitrary file manipulation due to an upload vulnerability. Impact : potential read and write access to files and directories on the FTP server. Root cause / vector ...
CVE-2004-2672
Unspecified vulnerability in ArGoSoft FTP server before 1.4.2.2 allows attackers to upload .lnk files via unknown vectors...
INFIGO-2006-05-03: Multiple FTP Servers vulnerabilities
INFIGO IS Security Advisory ADV-2006-05-03 http://www.infigo.hr/ Title: Multiple FTP Servers vulnerabilities Advisory ID: INFIGO-2006-05-03 Date: 2006-05-05 Advisory URL: http://www.infigo.hr/hr/infocus/advisories/INFIGO-2006-05-03 Impact: Remote code execution and DoS Risk Level: High...
Different FTP servers multiple security vulnerabilities
Multiple vulnerabilities were uncovered with FTP Fuzzer stress test suite. - ArgoSoft FTP Server RNTO Unicode overflow - Golden FTP Server NLST overflow - FileZilla FTP Server MLSD - FileZilla remote server interface homemade protocol - WarFTPD various exceptions and WDM.exe overflow...
Buffer overflow
Buffer overflow in ArgoSoft FTP Server 1.4.3.6 allows remote attackers to execute arbitrary code via Unicode in the RNTO command, as demonstrated by the Infigo FTPStress Fuzzer...
CVE-2006-2170
Buffer overflow in ArgoSoft FTP Server 1.4.3.6 allows remote attackers to execute arbitrary code via Unicode in the RNTO command, as demonstrated by the Infigo FTPStress Fuzzer...
CVE-2006-2170
CVE-2006-2170 affects ArgoSoft FTP Server 1.4.3.6. A buffer overflow is triggered by Unicode in the RNTO command, allowing remote attackers to execute arbitrary code. Exploitation was demonstrated by the Infigo FTPStress Fuzzer. The CVSS base score is 6.4 (Medium) with network access, low attack ...
CVE-2006-2170
Buffer overflow in ArgoSoft FTP Server 1.4.3.6 allows remote attackers to execute arbitrary code via Unicode in the RNTO command, as demonstrated by the Infigo FTPStress Fuzzer...
ArGoSoft FTP Server RNTO Command Remote Buffer Overflow
The remote host is using ArGoSoft FTP Server, an FTP server for Windows. The version of ArGoSoft FTP Server installed on the remote host contains a buffer overflow vulnerability that can be exploited by an authenticated, but possibly anonymous, user with a specially crafted RNTO command to crash...
CVE-2006-0978
Multiple cross-site scripting XSS vulnerabilities in the View Headers aka viewheaders functionality in ArGoSoft Mail Server Pro 1.8.8.5 allow remote attackers to inject arbitrary web script or HTML via 1 the Subject header, 2 the From header, and 3 certain other unspecified headers...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the View Headers aka viewheaders functionality in ArGoSoft Mail Server Pro 1.8.8.5 allow remote attackers to inject arbitrary web script or HTML via 1 the Subject header, 2 the From header, and 3 certain other unspecified headers...
CVE-2006-0978
The CVE-2006-0978 entry refers to multiple XSS vulnerabilities in the View Headers (viewheaders) functionality of ArGoSoft Mail Server Pro 1.8.8.5, allowing remote attackers to inject arbitrary web script or HTML via the Subject, From, and other headers. Connected sources corroborate the same iss...
CVE-2006-0978
Multiple cross-site scripting XSS vulnerabilities in the View Headers aka viewheaders functionality in ArGoSoft Mail Server Pro 1.8.8.5 allow remote attackers to inject arbitrary web script or HTML via 1 the Subject header, 2 the From header, and 3 certain other unspecified headers...
CVE-2006-0930
Directory traversal vulnerability in Webmail in ArGoSoft Mail Server Pro 1.8 allows remote authenticated users to read arbitrary files via a .. dot dot in the UIDL parameter...
Directory traversal
Directory traversal vulnerability in Webmail in ArGoSoft Mail Server Pro 1.8 allows remote authenticated users to read arbitrary files via a .. dot dot in the UIDL parameter...
Code injection
The POP3 Server in ArGoSoft Mail Server Pro 1.8 allows remote attackers to obtain sensitive information via the DUMP command, which reveals the operating system, registered user, and registration code...
CVE-2006-0928
The POP3 Server in ArGoSoft Mail Server Pro 1.8 allows remote attackers to obtain sensitive information via the DUMP command, which reveals the operating system, registered user, and registration code...