3515 matches found
CVE-2009-3110
Race condition in the file transfer functionality in Symantec Altiris Deployment Solution 6.9.x before 6.9 SP3 Build 430 allows remote attackers to read sensitive files and prevent client updates by connecting to the file transfer port before the expected client does...
DEBIAN-CVE-2009-2957
Heap-based buffer overflow in the tftprequest function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read aka RRQ request...
Low: Red Hat Security Advisory: lftp security and bug fix update
An updated lftp package that fixes one security issue and various bugs is now available for Red Hat Enterprise Linux 5. This update has been rated as having low security impact by the Red Hat Security Response Team. LFTP is a sophisticated file transfer program for the FTP and HTTP protocols. Lik...
dnsmasq: multiple vulnerabilities in TFTP server
Heap-based buffer overflow in the tftprequest function in tftp.c in dnsmasq before 2.50, when --enable-tftp is used, might allow remote attackers to execute arbitrary code via a long filename in a TFTP packet, as demonstrated by a read aka RRQ request...
Design/Logic Flaw
courier/1000@/apierroremail.html aka "error reporting page" in Accellion File Transfer Appliance FTA70178, and possibly other versions before FTA70189, allows remote attackers to send spam e-mail via modified description and clientemail parameters...
CVE-2008-7012
courier/1000@/apierroremail.html aka "error reporting page" in Accellion File Transfer Appliance FTA70178, and possibly other versions before FTA70189, allows remote attackers to send spam e-mail via modified description and clientemail parameters...
openSUSE Security Update : psi (psi-574)
Remote attackers could crash the Psi instant messaging client via the file transfer port CVE-2008-6393. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update psi-574. The text description of this...
openSUSE Security Update : psi (psi-574)
Remote attackers could crash the Psi instant messaging client via the file transfer port CVE-2008-6393. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update psi-574. The text description of this...
openSUSE Security Update : finch (finch-188)
specially crafted MSN SLP messages could cause an integer overflow in pidgin. Attackers could potentially exploit that to execute arbitrary code CVE-2008-2927. - overly long file names in MSN file transfers could crash pidgin CVE-2008-2955. - SSL certifcates were not verfied. Therefore piding...
HTC / Windows Mobile OBEX FTP Service Directory Traversal
I shall complete the information related to Bugtraq ID: 33359 Title: HTC / Windows Mobile OBEX FTP Service Directory Traversal Author: Alberto Moreno Tablado Vendor: HTC Vulnerable Products: - HTC devices running Windows Mobile 6 - HTC devices running Windows Mobile 6.1 Non vulnerable products: -...
Audio Article Directory - file Remote File Disclosure
Audio Article Directory - file Remote File Disclosure + Audio Article Directory Remote File Disclosure Vulnerability + Discovered By ThE g0bL!N Vendor:http://audioarticledirectory.com Poc --- Download.php one header'Content-Description: File Transfer'; header'Content-Type:...
Audio Article Directory File Disclosure
Audio Article Directory Remote File Disclosure Vulnerability + Discovered By ThE g0bL!N Vendor:http://audioarticledirectory.com Poc --- Download.php one header'Content-Description: File Transfer'; header'Content-Type: application/force-download'; header"Content-Disposition: attachment;...
pidgin -- multiple vulnerabilities
Secunia reports: Some vulnerabilities and weaknesses have been reported in Pidgin, which can be exploited by malicious people to cause a DoS or to potentially compromise a user's system. A truncation error in the processing of MSN SLP messages can be exploited to cause a buffer overflow. A bounda...
CVE-2009-1373
Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...
CVE-2009-1373
Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...
CVE-2009-1373
Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...
Buffer overflow
Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...
CVE-2009-1373
Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...
Pidgin: Multiple vulnerabilities
Background Pidgin formerly Gaim is an instant messaging client for a variety of instant messaging protocols. Description Multiple vulnerabilities have been discovered in Pidgin: Veracode reported a boundary error in the "XMPP SOCKS5 bytestream server" when initiating an outgoing file transfer...
pidgin file transfer buffer overflow
Buffer overflow in the XMPP SOCKS5 bytestream server in Pidgin formerly Gaim before 2.5.6 allows remote authenticated users to execute arbitrary code via vectors involving an outbound XMPP file transfer. NOTE: some of these details are obtained from third party information...