PT-2000-1128 · Openssh +1 · Openssh +1

Name of the Vulnerable Software and Affected Versions: OpenSSH affected versions not specified Description: The issue allows local users without shell access to redirect a TCP connection through a service that uses the standard system password database for authentication, such as POP or FTP...

PT-1999-1521 · War · War Ftp Daemon

Name of the Vulnerable Software and Affected Versions: War FTP Daemon version 1.70 Description: The issue allows remote attackers to cause a denial of service by flooding the War FTP Daemon with connections. Recommendations: For War FTP Daemon version 1.70, consider restricting the number of...

CVE-1999-0035

Race condition in signal handling routine in ftpd, allowing read/write arbitrary files...

icq-hidden-files.txt

Date: Fri, 1 Jan 1999 14:20:34 +1100 From: Justin Clift To: [email protected] Subject: Win32 ICQ 98a flaw Hello everyone, A while ago I found a flaw in ICQ which I believe to be fairly serious and asked whom to notify. Thanks for everyone's assistance in this. :- I notified Mirabilis and they...

cuartango-msie.txt

Cuartango security Hole http://pages.whowhere.com/computers/cuartangojc/cuartangoh1.html Affected software Microsoft Internet Explorer 4 Microsoft Internet Explorer 5 Preview Risks Major : Your computer files can be sent to a WEB site by a malicious Script if the file name is known. Technical...

aim.2.0.ip.address.txt

Exploit in the newest AIM 2.0 IU Uprising [email protected] Tue, 8 Jun 1999 18:39:50 PDT In the newest version of AIM AOL Instant Messenger there is a way to transfer files. When you are transferring the file, you can open a DOS prompt and type: netstat -a -n By doing this you obviously can g...

CVE-1999-0707

The default FTP configuration in HP Visualize Conference allows conference users to send a file to other participants without authorization...

Windows NT FTP 'guest' Account Present

The remote Windows host has a 'guest' FTP account enabled. This could allow a remote attacker to upload or download arbitrary files on the remote host. Note that this plugin only tests for guest accounts over FTP. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10166;...

PT-1999-1600 · Ipswitch · Ws Ftp

Name of the Vulnerable Software and Affected Versions: IPswitch WS FTP affected versions not specified Description: The issue allows local users to gain additional privileges and modify or add mail accounts by setting the flags registry key to 1920. Recommendations: At the moment, there is no...

CVE-1999-0616

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration CCE. Notes: the former description i...

CVE-1999-0614

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration CCE. Notes: the former description i...

CVE-1999-0497

Anonymous FTP is enabled...

PT-1999-1174

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned. Description The issue is related to Anonymous FTP being enabled. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...

PT-1997-1005 · Ibm +8 · Aix +10

Name of the Vulnerable Software and Affected Versions: FTP servers affected versions not specified Description: The issue allows an attacker to connect to arbitrary ports on machines other than the FTP client. This is also known as FTP bounce. Recommendations: At the moment, there is no informati...

PT-1997-1084 · Linux · Linux Tftp

Name of the Vulnerable Software and Affected Versions: Linux TFTP affected versions not specified Description: The issue allows access to files outside the restricted directory in Linux implementations of TFTP. Recommendations: At the moment, there is no information about a newer version that...

CVE-1999-1326

wu-ftpd 2.4 FTP server does not properly drop privileges when an ABOR abort file transfer command is executed during a file transfer, which causes a signal to be handled incorrectly and allows local and possibly remote attackers to read arbitrary files...

PT-1997-1042 · Sgi · Irix

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue concerns a file descriptor leak in the getcwd function when using FTP. Recommendations: At the moment, there is no information about a newer version that contains a fix fo...

PT-1997-1093 · Ftp · Ftp

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: A quote cwd command on FTP servers can reveal the full path of the home directory of the "ftp" user. Recommendations: At the moment, there is no information about a newer version th...

PT-1997-1094 · Gnu · Gnu Tar

Name of the Vulnerable Software and Affected Versions: GNU tar affected versions not specified Description: The issue allows an attacker to execute arbitrary commands when the GNU tar command is used in FTP sessions. Recommendations: At the moment, there is no information about a newer version th...

PT-1991-1001 · Tftp · Tftp

Name of the Vulnerable Software and Affected Versions: TFTP affected versions not specified Description: The issue allows a remote attacker to access sensitive information, such as password files, because TFTP is not running in a restricted directory. Recommendations: At the moment, there is no...