Lucene search
K

3515 matches found

Cvelist
Cvelist
added 2009/09/08 11:0 p.m.28 views

CVE-2009-3110

Race condition in the file transfer functionality in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 allows remote attackers to read sensitive files and prevent client updates by connecting to the file transfer port before the expected client does...

6.5AI score0.01477EPSS
Exploits0References4
OSV
OSV
added 2009/09/02 3:30 p.m.1 views

DEBIAN-CVE-2009-2957

Heap-based buffer overflow in the tftprequest function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read aka RRQ request...

6.8CVSS8.3AI score0.12684EPSS
Exploits7References1
RedHat Linux
RedHat Linux
added 2009/09/02 8:0 a.m.21 views

Low: Red Hat Security Advisory: lftp security and bug fix update

An updated lftp package that fixes one security issue and various bugs is now available for Red Hat Enterprise Linux 5. This update has been rated as having low security impact by the Red Hat Security Response Team. LFTP is a sophisticated file transfer program for the FTP and HTTP protocols. Lik...

6.8CVSS5.9AI score0.03175EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2009/09/01 12:18 a.m.2 views

dnsmasq: multiple vulnerabilities in TFTP server

Heap-based buffer overflow in the tftprequest function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read aka RRQ request...

6.8CVSS6.4AI score0.12684EPSS
Exploits7References4
Prion
Prion
added 2009/08/19 10:30 a.m.16 views

Design/Logic Flaw

courier/1000@/apierroremail.html aka "error reporting page" in Accellion File Transfer Appliance FTA70178, and possibly other versions before FTA70189, allows remote attackers to send spam e-mail via modified description and clientemail parameters...

7.8CVSS7.3AI score0.06674EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2009/08/19 10:0 a.m.21 views

CVE-2008-7012

courier/1000@/apierroremail.html aka "error reporting page" in Accellion File Transfer Appliance FTA70178, and possibly other versions before FTA70189, allows remote attackers to send spam e-mail via modified description and clientemail parameters...

6.8AI score0.06674EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.23 views

openSUSE Security Update : psi (psi-574)

Remote attackers could crash the Psi instant messaging client via the file transfer port CVE-2008-6393. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update psi-574. The text description of this...

10CVSS5.3AI score0.18201EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.28 views

openSUSE Security Update : psi (psi-574)

Remote attackers could crash the Psi instant messaging client via the file transfer port CVE-2008-6393. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update psi-574. The text description of this...

10CVSS5.3AI score0.18201EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2009/07/21 12:0 a.m.47 views

openSUSE Security Update : finch (finch-188)

specially crafted MSN SLP messages could cause an integer overflow in pidgin. Attackers could potentially exploit that to execute arbitrary code CVE-2008-2927. - overly long file names in MSN file transfers could crash pidgin CVE-2008-2955. - SSL certifcates were not verfied. Therefore piding...

6.8CVSS8.7AI score0.07258EPSS
Exploits1References7
securityvulns
securityvulns
added 2009/07/10 12:0 a.m.33 views

HTC / Windows Mobile OBEX FTP Service Directory Traversal

I shall complete the information related to Bugtraq ID: 33359 Title: HTC / Windows Mobile OBEX FTP Service Directory Traversal Author: Alberto Moreno Tablado Vendor: HTC Vulnerable Products: - HTC devices running Windows Mobile 6 - HTC devices running Windows Mobile 6.1 Non vulnerable products: -...

1.2AI score
Exploits0
exploitpack
exploitpack
added 2009/06/29 12:0 a.m.22 views

Audio Article Directory - file Remote File Disclosure

Audio Article Directory - file Remote File Disclosure + Audio Article Directory Remote File Disclosure Vulnerability + Discovered By ThE g0bL!N Vendor:http://audioarticledirectory.com Poc --- Download.php one header'Content-Description: File Transfer'; header'Content-Type:...

0.3AI score
Exploits0
Packet Storm
Packet Storm
added 2009/06/29 12:0 a.m.18 views

Audio Article Directory File Disclosure

Audio Article Directory Remote File Disclosure Vulnerability + Discovered By ThE g0bL!N Vendor:http://audioarticledirectory.com Poc --- Download.php one header'Content-Description: File Transfer'; header'Content-Type: application/force-download'; header"Content-Disposition: attachment;...

0.1AI score
Exploits0
FreeBSD
FreeBSD
added 2009/06/03 12:0 a.m.33 views

pidgin -- multiple vulnerabilities

Secunia reports: Some vulnerabilities and weaknesses have been reported in Pidgin, which can be exploited by malicious people to cause a DoS or to potentially compromise a user's system. A truncation error in the processing of MSN SLP messages can be exploited to cause a buffer overflow. A bounda...

9.3CVSS7.2AI score0.13294EPSS
Exploits1References4
NVD
NVD
added 2009/05/26 3:30 p.m.22 views

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

7.1CVSS7.2AI score0.04272EPSS
Exploits1References25
OSV
OSV
added 2009/05/26 3:30 p.m.7 views

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

7.3AI score
Exploits0References26
UbuntuCve
UbuntuCve
added 2009/05/26 3:30 p.m.28 views

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

7.1CVSS6AI score0.04272EPSS
Exploits1References3
Prion
Prion
added 2009/05/26 3:30 p.m.18 views

Buffer overflow

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

7.1CVSS7.9AI score0.04272EPSS
Exploits1References25Affected Software1
Debian CVE
Debian CVE
added 2009/05/26 3:16 p.m.30 views

CVE-2009-1373

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

7.1CVSS7.3AI score0.04272EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2009/05/25 12:0 a.m.39 views

Pidgin: Multiple vulnerabilities

Background Pidgin formerly Gaim is an instant messaging client for a variety of instant messaging protocols. Description Multiple vulnerabilities have been discovered in Pidgin: Veracode reported a boundary error in the "XMPP SOCKS5 bytestream server" when initiating an outgoing file transfer...

9.3CVSS8.9AI score0.13294EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2009/05/22 12:0 p.m.23 views

pidgin file transfer buffer overflow

Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...

7.1CVSS6.3AI score0.04272EPSS
Exploits1References4
Rows per page
Query Builder