CVE-2019-9938

The CVE-2019-9938 issue affects the Android SHAREit app prior to version 4.0.42. A remote attacker on the same network or connected to public open hotspots created by the app can download arbitrary files from the device (contacts, photos, videos, sound clips, etc.) after authenticating as a recog...

The vulnerability of the TFTP Server component of the Windows Deployment Services service allows a perpetrator to execute arbitrary code.

The vulnerability of the TFTP Server component of the Windows Deployment Services service exists due to errors in memory object handling. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially crafted request...

ALPINE-CVE-2019-3858

An out of bounds read flaw was discovered in libssh2 before 1.8.1 when a specially crafted SFTP packet is received from the server. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory...

UBUNTU-CVE-2019-3858

An out of bounds read flaw was discovered in libssh2 before 1.8.1 when a specially crafted SFTP packet is received from the server. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory...

DEBIAN-CVE-2019-3858

An out of bounds read flaw was discovered in libssh2 before 1.8.1 when a specially crafted SFTP packet is received from the server. A remote attacker who compromises a SSH server may be able to cause a Denial of Service or read data in the client memory...

CVE-2018-15906

SolarWinds Serv-U FTP Server 15.1.6 allows remote authenticated users to execute arbitrary code by leveraging the Import feature and modifying a CSV file...

BSA-2019-767

Security Advisory ID : BSA-2019-767 Component : LIBSSH2 Revision : 1.0: Final libssh2 is a client-side C library implementing the SSH2 protocol.It supports regular terminal, SCP and SFTPsessions; port forwarding, X11 forwarding; password, key-based and keyboard-interactive authentication. Libssh2...

libssh2 out-of-bounds read vulnerability (CNVD-2019-07797)

libssh2 is a client-side C library that implements the SSH2 protocol, which is capable of executing remote commands, file transfers, and providing a secure transmission channel for remote programs. An out-of-bounds read vulnerability exists in libssh2, which can be exploited by a remote attacker...

libssh2 out-of-bounds read vulnerability (CNVD-2019-07802 )

libssh2 is a client-side C library that implements the SSH2 protocol, which is capable of executing remote commands, file transfers, and providing a secure transmission channel for remote programs. An out-of-bounds read vulnerability exists in libssh2, which can be exploited by a remote attacker...

UBUNTU-CVE-2019-9809

If the source for resources on a page is through an FTP connection, it is possible to trigger a series of modal alert messages for these resources through invalid credentials or locations. These messages cannot be immediately dismissed, allowing for a denial of service DOS attack. This...

UBUNTU-CVE-2019-9806

A vulnerability exists during authorization prompting for FTP transaction where successive modal prompts are displayed and cannot be immediately dismissed. This allows for a denial of service DOS attack. This vulnerability affects Firefox 66...

UBUNTU-CVE-2019-9807

When arbitrary text is sent over an FTP connection and a page reload is initiated, it is possible to create a modal alert message with this text as the content. This could potentially be used for social engineering attacks. This vulnerability affects Firefox 66...

Firefox Send — Free Encrypted File Transfer Service Now Available For All

Mozilla has made it easy for you to share large files securely and privately with whomever you want, eliminating the need to depend upon less secure free third-party services or file upload tools that burn a hole in your pocket. Mozilla has finally launched its free, end-to-end encrypted...

The vulnerability of the TFTP file transfer protocol implementation in Cisco IOS XR allows a hacker to disclose sensitive information.

The vulnerability of the TFTP file transfer protocol implementation in Cisco IOS XR operating systems is related to security flaws in the mechanisms used for protection. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

robinbhandari FTP Remote Denial Of Service Exploit

Title: CVE-2019-9668 robinbhandari FTP remote DoS vulnerability Vulnerable: - https://github.com/rovinbhandari/FTP Description: robinbhandari is a open source tiny ftp server/client in github.com. it has a remote DoS vulnerability in a 'put' command. Timeline: 2019-03-11 CVE-2019-9668 robinbhanda...

UltraVNC heap buffer overflow vulnerability (CNVD-2019-13280)

UltraVNC is an open source remote terminal control software for the Windows platform. A heap buffer overflow vulnerability exists in the VNC server code of the file transfer request handler in UltraVNC version 1211. An attacker could exploit this vulnerability to execute code...

UltraVNC Heap Buffer Overflow Vulnerability

UltraVNC is an open source remote terminal control software for the Windows platform. A heap buffer overflow vulnerability exists in the VNC server code of the file transfer handler in UltraVNC version 1211. An attacker could exploit this vulnerability to execute code...

UltraVNC Stack Buffer Overflow Vulnerability

UltraVNC is an open source remote terminal control software for the Windows platform. A stack buffer overflow vulnerability exists in the VNC server code of the file transfer request handler in UltraVNC version 1211. An attacker could exploit this vulnerability to cause a denial of service...

CVE-2019-8271

UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer handler, which can potentially result code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1212...

CVE-2019-8274

CVE-2019-8274 affects UltraVNC 1211 in the VNC server code’s file transfer offer handler, describing a heap-based buffer overflow that could allow remote code execution via network access. The issue is resolved in revision 1212. No exploitation details are provided beyond that it is network-explo...