CVE-2011-1932

Directory traversal vulnerability in io/filesystem/filesystem.cc in Widelands before 15.1 might allow remote attackers to overwrite arbitrary files via . dot characters in a pathname that is used for a file transfer in an Internet game...

CVE-2011-1932

CVE-2011-1932 : In Widelands prior to 15.1, a directory traversal flaw in io/filesystem/filesystem.cc allows remote attackers to overwrite arbitrary files via dot characters in a pathname used for a file transfer in an Internet game. Root cause is insufficient handling of path components containi...

Google Android - 'content://' URI Multiple Information Disclosure Vulnerabilities

Android Data Stealing Web PageClick: Malicious Link"; // Stage 1: Redirect to Stage 2 which will force a download of the HTML/JS payload, then a few seconds later redirect...

php: DoS when using HTTP proxy with the FTP wrapper

Unspecified vulnerability in the Streams component in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service application crash by accessing an ftp:// URL during use of an HTTP proxy with the FTP wrapper...

ScriptFTP 3.3 - Remote Buffer Overflow (LIST) (1)

ScriptFTP 3.3 - Remote Buffer Overflow LIST 1 Exploit Title: ScriptFTP Yes, this poc is using PASSIVE connection and it will take some time to establish. I love the way we wait...

CVE-2011-3424

Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to hijack web sessions via unspecified...

CVE-2011-3423

Cross-site scripting XSS vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to inject arbitrary web script or...

Cross site scripting

Cross-site scripting XSS vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to inject arbitrary web script or...

Session fixation

Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to hijack web sessions via unspecified...

CVE-2011-3423

Cross-site scripting XSS vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to inject arbitrary web script or...

CVE-2011-3424

Session fixation vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to hijack web sessions via unspecified...

CVE-2011-3424

CVE-2011-3424 affects TIBCO Managed File Transfer Internet Server (7.0.x–7.1.0) and Command Center (7.0.x–7.1.0), and TIBCO Slingshot (1.8.0 and earlier). Root cause: defects in processing inbound HTTP requests leading to a session fixation vulnerability that can allow an attacker to hijack a web...

CVE-2011-3423

CVE-2011-3423 affects TIBCO Managed File Transfer Internet Server (before 7.1.1), Managed File Transfer Command Center (before 7.1.1), and TIBCO Slingshot (before 1.8.1). The root cause is defects in the processing of inbound HTTP requests, enabling cross-site scripting (XSS) to view/modify infor...

TIBCO Security Advisory: September 13, 2011 - TIBCO® Managed FileTransfer

TIBCO® Managed File Transfer vulnerability Original release date: Sep 13, 2011 Last revised:-- CVE-2011-3423, CVE-2011-3424 Source: TIBCO SoftwareInc. TIBCO Managed File Transfer vulnerability Original release date: Sep 13, 2011 Last revised: -- Source: TIBCO Software Inc. Systems Affected TIBCO...

CentOS Update for lftp CESA-2009:1278 centos5 i386

Check for the Version of lftp OpenVAS Vulnerability Test CentOS Update for lftp CESA-2009:1278 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

CentOS Update for vsftpd CESA-2011:0337 centos5 i386

Check for the Version of vsftpd OpenVAS Vulnerability Test CentOS Update for vsftpd CESA-2011:0337 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...

CentOS Update for lftp CESA-2009:1278 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for lftp CESA-2010:0585 centos5 i386

The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

VVMessenger v1.0.4170x.x - Denial of Service Vulnerabilities

Document Title: =============== VVMessenger v1.0.4170x.x - Denial of Service Vulnerabilities Release Date: ============= 2011-08-03 Vulnerability Laboratory ID VL-ID: ==================================== 120 Product & Service Introduction: =============================== V&V messenger is an insta...

PuTTY v.0.61 New Version released After 4 years

PuTTY v.0.61 New Version released After 4 years After four Years, Putty's New version finally Released today.Here are the PuTTY files themselves: PuTTY the Telnet and SSH client itself PSCP an SCP client, i.e. command-line secure file copy PSFTP an SFTP client, i.e. general file transfer sessions...