2205 matches found
WU-FTPD does not properly handle file name globbing
Overview SecurityFocus and CORE Security Technologies have reported a vulnerability in WU-FTPD. WU-FTPD does not handle file name globbing properly and may allow an attacker to execute arbitrary code. WU-FTPD is a widely-used FTP daemon that is included in many UNIX and Linux distributions. This...
CVE-2001-0875
Internet Explorer 5.5 and 6.0 allows remote attackers to cause the File Download dialogue box to misrepresent the name of the file in the dialogue in a way that could fool users into thinking that the file type is safe to download...
CVE-2001-0449
Buffer overflow in WinZip 8.0 allows attackers to execute arbitrary commands via a long file name that is processed by the /zipandemail command line option...
Дырка в fcheck (input validation)
При вызове внешней программы с именем файла не проверяется наличией shell-символов в имени файла...
Дырка в WinZip (zipandemail)
Переполнение буфера при длинном имени файла при исопльзовании опции /zipandemail...
Дырка в 24Link Webserver (avoid password protection )
Добавление спец символов к имени файла позволяет обойти защиту файла паролем...
[Update] NSFOCUS SA2000-07: Microsoft IIS 4.0/5.0 CGI File Name Inspection Vulnerability
NSFOCUS Security AdvisorySA2000-07 Topic: Microsoft IIS 4.0/5.0 CGI File Name Inspection Vulnerability Release DateЈє Nov 7th, 2000 Update DateЈє Nov 23rd, 2000 CVE Candidate Numbers: CAN-2000-0886 BUGTRAQ ID : 1912 Affected system: ================ - Microsoft IIS 4.0 - Microsoft IIS 5.0 Impact:...
CVE-2000-0750
Buffer overflow in mopd Maintenance Operations Protocol loader daemon allows remote attackers to execute arbitrary commands via a long file name...
CVE-2000-0481
CVE-2000-0481 describes a buffer overflow in KDE Kmail triggered by an attachment with a long file name, allowing a remote attacker to cause a denial of service. The NVD entry lists a Network-attack vector, low complexity, no authentication, with Availability impact described as Partial. The CVSS...
CVE-2000-0587
The privpath directive in glftpd 1.18 allows remote attackers to bypass access restrictions for directories by using the file name completion capability...
CVE-2000-0587
The CVE-2000-0587 entry concerns glftpd 1.18, where the privpath directive permits remote attackers to bypass directory access restrictions by abusing filename completion. This constitutes a vulnerability in the directory traversal/access-control mechanism, allowing authorized-appearing access to...
CVE-2000-0481
Buffer overflow in KDE Kmail allows a remote attacker to cause a denial of service via an attachment with a long file name...
Переполнение буфера в mopd
Переполнение буфера при длинном имени файла, несколько ошибок форматной строки...
Дырка в AnalogX Simple Server
Запрос к длинному имени файла в каталоге cgi-bin приводит к краху сервера...
Еще одна дырка в BigBrother
В отдельных случаев на проверяется наличие shell-символов в имени файла, что позволяет выполнить приложение...
Дырка в tnef
При извлечении данных из MS-TNEF-файлов не проверяется наличие служебных символов в имени файла, что позволяет переписать любой файл, принадлежащий пользователю...
fbi-aim-dos.txt
FROM THE OFFICES OF: | | | \ | | | | | | | | | |/ / | | | | | | | | / \ / | / | '| | || ' | / \ | | |/ |/ \ ' \ / / \ | || | | |/ / | | | | || | | | || / | | | | | / | | | | / | / // ,|| /| ||\||||, ||| ||\| / | |/ AOL Instant Messenger DoS Denial of Service exploit. Website:...
CVE-2000-0415
Outlook Express 4.x is affected by a buffer overflow triggered by mail/news messages with a .jpg or .bmp attachment having a long filename. The vulnerability is reported to allow denial of service. The connected documents corroborate the issue as described for Outlook Express 4.x; no specific exp...
CVE-2000-0415
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name...
CVE-1999-0997
wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress...