136 matches found
CVE-2025-59462 Denial-of-service (DoS) via delayed or missing client response
An attacker who tampers with the C++ CLI client may crash the UpdateService during file transfers, disrupting updates and availability...
CVE-2025-59462
CVE-2025-59462 affects the SICK TLOC100-100 product family. The vulnerability stems from tampering with the C++ CLI client, which can crash the UpdateService during file transfers, potentially disrupting updates and availability. Public documents confirm the impact is a denial of service / availa...
CVE-2025-59462 Denial-of-service (DoS) via delayed or missing client response
An attacker who tampers with the C++ CLI client may crash the UpdateService during file transfers, disrupting updates and availability...
PT-2025-43926
Name of the Vulnerable Software and Affected Versions versions prior to 2025 Description An attacker manipulating the C++ CLI client can cause the UpdateService to crash during file transfers, leading to disruptions in updates and availability. Recommendations At the moment, there is no informati...
SICK AG TLOC100-100 安全漏洞
The SICK AG TLOC100-100 is a mobile robot positioning system from SICK Germany. A security vulnerability exists in the SICK AG TLOC100-100, which originates from a tampered C++ CLI client and could lead to a service crash during file transfers, affecting updates and availability...
PT-2025-43927
Name of the Vulnerable Software and Affected Versions affected versions not specified Description An attacker may cause chunk-size mismatches that block file transfers and prevent subsequent transfers. This can potentially disrupt file transfer operations. Recommendations At the moment, there is ...
SICK AG TLOC100-100 安全漏洞
The SICK AG TLOC100-100 is a mobile robot positioning system from SICK Germany. A security vulnerability exists in the SICK AG TLOC100-100, which stems from the possibility of a block size mismatch that could prevent file transfers and subsequent transfers...
EUVD-2020-30231
Malware in sbrugna...
EUVD-2007-1648
Malware in sbrugna...
JustTryHarder
This is a cheat sheet repository for the PWK Pentester's Workbench course and the OSCP Offensive Security Certified Professional exam. It is inspired by PayloadAllTheThings. The repository contains various tools, scripts, and resources for penetration testing and exploitation. The repository...
CVE-2024-52504
A vulnerability has been identified in SIPROTEC 4 6MD61 All versions, SIPROTEC 4 6MD63 All versions, SIPROTEC 4 6MD66 All versions, SIPROTEC 4 6MD665 All versions, SIPROTEC 4 7SA522 All versions, SIPROTEC 4 7SA6 All versions V4.78, SIPROTEC 4 7SD5 All versions V4.78, SIPROTEC 4 7SD610 All version...
CVE-2024-52504
The CVE-2024-52504 entry concerns Siemens SIPROTEC 4 and SIPROTEC 4 Compact relays. Affected devices do not properly handle interrupted operations of file transfer, which can allow an unauthenticated remote attacker to cause a denial of service; normal operation requires a device restart. Concret...
LocalSend 安全漏洞
LocalSend is an open source cross-platform alternative to AirDrop by LocalSend Open Source. A security vulnerability exists in LocalSend 1.16.1 and earlier versions, which stems from the discovery of a man-in-the-middle attack vulnerability in the protocol that could lead to file transfer...
rsync: Multiple Vulnerabilities
Background rsync is a server and client utility that provides fast incremental file transfers. It is used to efficiently synchronize files between hosts and is used by emerge to fetch Gentoo's Portage tree. Description Multiple vulnerabilities have been discovered in rsync. Please review the CVE...
CVE-2024-11144 Race Condition with LightFTP
The server lacks thread safety and can be crashed by anomalous data sent by an anonymous user from a remote network. The crash causes the FTP service to become unavailable, affecting all users and processes that rely on it for file transfers. If the crash occurs during file upload or download, it...
CVE-2024-8160
Erik de Jong, member of the AXIS OS Bug Bounty Program, has found that the VAPIX API ftptest.cgi did not have a sufficient input validation allowing for a possible command injection leading to being able to transfer files from/to the Axis device. This flaw can only be exploited after authenticati...
CVE-2024-8160
Summary (CVE-2024-8160) : The vulnerability affects Axis OS (AXIS OS) versions prior to the patched release. The flaw resides in the VAPIX API’s ftptest.cgi due to insufficient input validation, enabling a possible command injection that could allow transferring files to/from the Axis device. Exp...
rsync: Multiple Vulnerabilities
Background rsync is a server and client utility that provides fast incremental file transfers. It is used to efficiently synchronize files between hosts and is used by emerge to fetch Gentoo's Portage tree. Description Multiple vulnerabilities have been discovered in rsync. Please review the CVE...
Rocky Linux 8 : spice-vdagent (RLSA-2021:1791)
The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:1791 advisory. - A flaw was found in the way the spice-vdagentd daemon handled file transfers from the host system to the virtual machine. Any unprivileged local guest...
Skyhook - A Round-Trip Obfuscated HTTP File Transfer Setup Built To Bypass IDS Detections
Skyhook is a REST-driven utility used to smuggle files into and out of networks defended by IDS implementations. It comes with a pre-packaged web client that uses a blend of React, vanilla JS, and web assembly to manage file transfers. Key Links Download here See the user documentation to get...