95 matches found
CVE-2003-1259
Buffer overflow in CuteFTP 4.2 and 5.0 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long FTP server banner...
CVE-2003-1260
Buffer overflow in CuteFTP 5.0 allows remote attackers to execute arbitrary code via a long response to a LIST command...
KLA10130 ACE vulnerability in CuteFTP
A buffer overflow was found in CuteFTP. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed server response. Original advisories - Related products CuteFTP-5-XP CVE list CVE-2003-1260 high...
CuteFTP < 5.0.2.0 Multiple Vulnerabilities
CuteFTP, an FTP client, is installed on the remote Windows host. The version of CuteFTP on the remote host reportedly is affected by a buffer overflow that may be exploited by an attacker to execute arbitrary commands, subject to the privileges of the current user. To exploit this issue, an...
GlobalScape CuteFTP 5.0 - LIST Response Buffer Overflow
GlobalScape CuteFTP 5.0 - LIST Response Buffer Overflow source: https://www.securityfocus.com/bid/6642/info A buffer overflow condition has been reported for the CuteFTP application. The vulnerability is due to insufficient bounds checking performed on certain FTP command responses. If CuteFTP is...
GlobalScape CuteFTP 5.0 - LIST Response Buffer Overflow
source: https://www.securityfocus.com/bid/6642/info A buffer overflow condition has been reported for the CuteFTP application. The vulnerability is due to insufficient bounds checking performed on certain FTP command responses. If CuteFTP is used to connect to a malicious FTP server that sends an...
CuteFTP 5.0 XP, Buffer Overflow
Advisory 07: ------------ Buffer Overflow In CuteFTP 5.0 XP Discovered: ----------- By Me, Lance Fitz-Herbert aka phrizer. September 4th, 2002 Vulnerable Applications: ------------------------ Tested On CuteFTP 5.0 XP, build 50.6.10.2 Others could be vulnerable... Impact: ------- Medium, This cou...
CuteFTP: buffer overflow
Damage Hacking Group security advisory www.dhgroup.org Product: CuteFTP client Authors: GlobalSCAPE Inc. www.globalscape.com Vulnerable versions: v.4. Vulnerability: buffer overflow Overview-------------------------------------------------------------- "CuteFTP is a Windows based File Transfer...
CuteFTP 4.2 - Default Weak Password Encoding
CuteFTP 4.2 - Default Weak Password Encoding source: https://www.securityfocus.com/bid/3233/info CuteFTP is a popular commercial FTP client for Microsoft Windows systems. CuteFTP v4.2and possibly earlier versions uses a weak system for encoding passwords for accounts on FTP sites. Passwords are...
CuteFTP 4.2 - Default Weak Password Encoding
source: https://www.securityfocus.com/bid/3233/info CuteFTP is a popular commercial FTP client for Microsoft Windows systems. CuteFTP v4.2and possibly earlier versions uses a weak system for encoding passwords for accounts on FTP sites. Passwords are stored in a file called 'sm.dat', and can be...
scx-sa-21.txt
============================================================================ Securax-SA-21 Security Advisory belgian.networking.security Dutch ============================================================================ Topic: CuteFTP uses a weak password encoding scheme Announced: 2001-08-01...
CVE-2000-0084
CuteFTP uses weak encryption to store password information in its tree.dat file...
CVE-2000-0084
Summary of CVE-2000-0084 (CuteFTP) : The vulnerability arises from CuteFTP storing password information in its tree.dat file using weak encryption. This is evidenced across multiple sources in the connected documents, which consistently describe weak encryption as the root cause. The available de...
CVE-2000-0084
CuteFTP uses weak encryption to store password information in its tree.dat file...
PT-2000-1073 · Globalscape · Cuteftp
Name of the Vulnerable Software and Affected Versions: CuteFTP affected versions not specified Description: The issue concerns the use of weak encryption by CuteFTP to store password information in its tree.dat file. Recommendations: At the moment, there is no information about a newer version th...