15 matches found
EUVD-2010-5310
Malware in sbrugna...
CVE-2010-20121
EasyFTP Server versions up to 1.7.0.11 contain a stack-based buffer overflow vulnerability in the FTP command parser. When processing the CWD Change Working Directory command, the server fails to properly validate the length of the input string, allowing attackers to overwrite memory on the stack...
CVE-2010-20121
EasyFTP Server versions up to 1.7.0.11 contain a stack-based buffer overflow vulnerability in the FTP command parser. When processing the CWD Change Working Directory command, the server fails to properly validate the length of the input string, allowing attackers to overwrite memory on the stack...
CVE-2010-20121
EasyFTP Server versions up to 1.7.0.11 contain a stack-based buffer overflow vulnerability in the FTP command parser. When processing the CWD Change Working Directory command, the server fails to properly validate the length of the input string, allowing attackers to overwrite memory on the stack...
CVE-2010-20121 EasyFTP Server <= 1.7.0.11 CWD Command Stack Buffer Overflow
EasyFTP Server versions up to 1.7.0.11 contain a stack-based buffer overflow vulnerability in the FTP command parser. When processing the CWD Change Working Directory command, the server fails to properly validate the length of the input string, allowing attackers to overwrite memory on the stack...
CVE-2010-20121 EasyFTP Server <= 1.7.0.11 CWD Command Stack Buffer Overflow
EasyFTP Server versions up to 1.7.0.11 contain a stack-based buffer overflow vulnerability in the FTP command parser. When processing the CWD Change Working Directory command, the server fails to properly validate the length of the input string, allowing attackers to overwrite memory on the stack...
PT-2025-34289 · Undefined · Undefined
EasyFTP Server versions up to 1.7.0.11 contain a stack-based buffer overflow vulnerability in the FTP command parser. When processing the CWD Change Working Directory command, the server fails to properly validate the length of the input string, allowing attackers to overwrite memory on the stack...
FreeFloat FTP Server 安全漏洞
FreeFloat FTP Server is an FTP service from FreeFloat. A buffer overflow vulnerability exists in FreeFloat FTP Server, which stems from the XCWD Command Handler component failing to properly validate the length size of input data, no details of the vulnerability are provided at this time...
runc: file descriptor leak
A file descriptor leak issue was found in the runc package. While a user performs OCLOEXEC all file descriptors before executing the container code, the file descriptor is open when performing setcwd2, which means that the reference can be kept alive in the container by configuring the working...
runc: file descriptor leak
A file descriptor leak issue was found in the runc package. While a user performs OCLOEXEC all file descriptors before executing the container code, the file descriptor is open when performing setcwd2, which means that the reference can be kept alive in the container by configuring the working...
CVE-2021-41636
MELAG FTP Server 2.2.0.4 allows an attacker to use the CWD command to break out of the FTP servers root directory and operate on the entire operating system, while the access restrictions of the user running the FTP server apply...
MELAG FTP Server 路径遍历漏洞
MELAG FTP Server is an FTP server from the German company MELAG. A security vulnerability exists in MELAG FTP Server version 2.2.0.4, which originates from a system that allows an attacker to break into the root directory of the FTP server and run it on the entire operating system using the CWD...
Konica Minolta FTP Utility Buffer Overflow Vulnerability
KONICA MINOLTA FTP Utility is a software used by KONICA MINOLTA copiers. Konica Minolta FTP Utility 1.0 is implemented with a buffer overflow vulnerability due to a failure to check the input size when parsing CWD commands. A remote attacker can exploit this vulnerability to execute arbitrary cod...
PYSEC-2010-4
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a 1 CWD, 2 DELE, 3 STOR, or 4 RETR command...
PT-2001-2328 · Eftp · Eftp
Name of the Vulnerable Software and Affected Versions: EFTP version 2.0.8.346 Description: A directory traversal issue allows local users to read directories by using a modified dot dot in the CWD command. Recommendations: For EFTP version 2.0.8.346, consider restricting access to the CWD command...