DSA-1823-1 samba - several vulnerabilities

Bulletin has no description...

SMB File Server Enumeration

Binary data 7009.pasl...

Mandriva Update for samba MDKA-2007:001 (samba)

Check for the Version of samba OpenVAS Vulnerability Test Mandriva Update for samba MDKA-2007:001 samba Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Serv-U < 8.0.0.1 Multiple Vulnerabilities (DoS, Traversal)

Binary data 4979.prm...

[SECURITY] Fedora 9 Update: netatalk-2.0.3-21.fc9

This package enables Linux to talk to Macintosh computers via the AppleTalk networking protocol. It includes a daemon to allow Linux to act as a file server over EtherTalk or IP for Mac's...

Directory traversal

Directory traversal vulnerability in the FTP server in Rhino Software Serv-U File Server 7.0.0.1 through 7.4.0.1 allows remote attackers to create arbitrary directories via a .. backslash dot dot in an MKD request...

CVE-2009-1031

The CVE-2009-1031 issue affects Rhino Software Serv-U File Server versions 7.0.0.1 through 7.4.0.1. The vulnerability is a directory traversal in the FTP server that allows an unauthenticated remote attacker to create arbitrary directories via a MKD request using a backslash-dot-dot sequence (..)...

CVE-2009-1031

Directory traversal vulnerability in the FTP server in Rhino Software Serv-U File Server 7.0.0.1 through 7.4.0.1 allows remote attackers to create arbitrary directories via a .. backslash dot dot in an MKD request...

Serv-U < 7.3.0.1 Multiple Remote Vulnerabilities

Binary data 4699.prm...

Design/Logic Flaw

Unspecified vulnerability in Serv-U File Server 7.0.0.1, and other versions before 7.2.0.1, allows remote authenticated users to cause a denial of service daemon crash via an SSH session with SFTP commands for directory creation and logging...

CVE-2008-3731

Unspecified vulnerability in Serv-U File Server 7.0.0.1, and other versions before 7.2.0.1, allows remote authenticated users to cause a denial of service daemon crash via an SSH session with SFTP commands for directory creation and logging...

CVE-2008-3731

Unspecified vulnerability in Serv-U File Server 7.0.0.1, and other versions before 7.2.0.1, allows remote authenticated users to cause a denial of service daemon crash via an SSH session with SFTP commands for directory creation and logging...

CVE-2008-3731

The CVE-2008-3731 issue affects RhinoSoft/Serv-U File Server versions up to 7.2.0.1 (specifically 7.0.0.1 and earlier than 7.2.0.1). The vulnerability is triggered remotely by an authenticated user via an SSH/SFTP session when performing directory creation and logging operations, which can cause ...

Grouplogic EztremeZ-IP file and print server multiple security vulnerabilities

DoS conditions, directory traversal...

ExtremeZ-IP File and Print Server Zidget/HTTP Server Traversal Arbitrary File Access

The remote host is running ExtremeZ-IP, a file- and print-server for Windows. The version of ExtremeZ-IP includes a web server, which provides access to the Zidget widget and master list and is affected by a limited directory traversal vulnerability. By leveraging this issue, an unauthenticated,...

Authentication flaw

HTTP File Server HFS before 2.2c allows remote attackers to append arbitrary text to the log file by using the base64 representation of this text during HTTP Basic Authentication...

Cross site request forgery (csrf)

HTTP File Server HFS before 2.2c tags HTTP request log entries with the username sent during HTTP Basic Authentication, regardless of whether authentication succeeded, which might make it more difficult for an administrator to determine who made a remote request...

Directory traversal

Multiple directory traversal vulnerabilities in HTTP File Server HFS before 2.2c, when account names are used as log filenames, allow remote attackers to create arbitrary 1 files and 2 directories via a .. dot dot in an account name, when requesting the / URI; and 3 append arbitrary data to a fil...

Cross site scripting

Cross-site scripting XSS vulnerability in HTTP File Server HFS before 2.2c allows remote attackers to inject arbitrary web script or HTML via the userinfo subcomponent of a URL...

Design/Logic Flaw

HTTP File Server HFS before 2.2c, when account names are used as log filenames, allows remote attackers to cause a denial of service daemon crash via a long account name...