Hummingbird InetD LPD buffer overflow

Added: 11/29/2005 CVE: CVE-2005-1815 BID: 13788 OSVDB: 16957 Background Hummingbird InetD implements common UNIX services on Windows platforms. Problem The Hummingbird InetD LPD service is affected by a buffer overflow which allows remote command execution. Resolution Apply the patch. References...

Hummingbird Connectivity FTP service XCWD Overflow

The remote host is running the Hummingbird Connectivity FTP server. It was possible to shut down the remote FTP server by issuing a XCWD command followed by a too long argument. This problem allows an attacker to prevent the remote site from sharing some resources with the rest of the world...

Hummingbird Connectivity FTP service XCWD Overflow

The remote host is running the Hummingbird Connectivity FTP server. It was possible to shut down the remote FTP server by issuing a XCWD command followed by a too long argument. SPDX-FileCopyrightText: 2004 David Maciejak Some text descriptions might be excerpted from a referenced sources, and ar...

CVE-2005-2599

CVE-2005-2599 affects Hummingbird FTP for Connectivity 10.0. The vulnerability arises from storing the user’s password in the FTP profile using weak encoding, enabling an attacker to gain privileges. The available sources (CVE entries and related records) describe the weakness in password storage...

CVE-2005-2599

Hummingbird FTP for Connectivity 10.0 uses weak encryption trivial encoding to store the user's password in the FTP profile, which allows attackers to gain privileges...

CVE-2005-2599

Hummingbird FTP for Connectivity 10.0 uses weak encryption trivial encoding to store the user's password in the FTP profile, which allows attackers to gain privileges...

Hummingbird FTP client weak encryption

Profiles are "encrypted" by XOR'ing with fixed byte value 0x7d...

Hummingbird FTP Weak Password Encryption

Hummingbird FTP Weak Password Encryption Critical: Less critical Impact: Exposure of sensitive information Where: Local system Solution Status: Unpatched Software: Hummingbird Connectivity 10.x http://connectivity.hummingbird.com/products/nc/cpia.html Description: A vulnerability has been...

CVE-2004-2258

Technical details are not publicly available in the provided documents. Monitor for updates from official advisories and CVE records for any new information or remediation guidance.

CVE-2004-2258

Xconfig in Hummingbird Exceed before 9.0.0.1, when the Screen Definition is password-protected, allows local users to access certain options by switching to another tab, then switching back to the original tab...

CVE-2005-1815

CVE-2005-1815: In Hummingbird Connectivity InetD, buffer overflows in the LPD (LPDw.exe) and FTPD (ftpdw.exe) daemons allow denial of service and potentially arbitrary code execution via a long FTP command or a flood of data to LPD. Public references (SAINT advisories, Exploit-DB, Metasploit modu...

CVE-2005-1815

Multiple buffer overflows in Hummingbird Connectivity inetD 10.0.0.1 and 9.0.0.4 allows attackers to cause a denial of service and possibly execute arbitrary code via 1 an FTP command with a long argument to FTPD ftpdw.exe or 2 a large amount of data to LPD Lpdw.exe...

CVE-2005-1815

Multiple buffer overflows in Hummingbird Connectivity inetD 10.0.0.1 and 9.0.0.4 allows attackers to cause a denial of service and possibly execute arbitrary code via 1 an FTP command with a long argument to FTPD ftpdw.exe or 2 a large amount of data to LPD Lpdw.exe...

Hummingbird InetD FTP Server, LPD server multiple vulnerabilities

Buffer overflows, DoS...

[SA15557] Hummingbird InetD Components Buffer Overflow Vulnerabilities

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...

Hummingbird InetD FTP Component (ftpdw.exe) Command Overflow

According to its banner, the ftpd daemon installed on the remote host is from the Hummingbird Connectivity suite and suffers from a buffer overflow vulnerability. An attacker can crash the daemon and possibly execute arbitrary code remotely within the context of the affected service. C Tenable...

Hummingbird InetD LPD Component (Lpdw.exe) Data Overflow

The lpd daemon installed on the remote host appears to be from the Hummingbird Connectivity suite and suffers from a buffer overflow vulnerability. An attacker can crash the daemon by sending commands with overly-long queue names. Additionally, with a specially crafted packet, the attacker can al...

Hummingbird Inetd Multiple Remote Overflows

Binary data 2941.prm...

CVE-2003-1100

CVE-2003-1100 concerns multiple cross-site scripting (XSS) vulnerabilities in Hummingbird CyberDOCS versions 3.5.1, 3.9, and 4.0. The underlying issue is improper handling of user-supplied input leading to injection of arbitrary web script or HTML via certain vectors. Impact is remote exploitatio...

CVE-2003-1101

CVE-2003-1101 affects Hummingbird CyberDOCS versions 3.5.1, 3.9, and 4.0. The vulnerability arises in the DM Web Server where invalid login credentials can cause an error message that reveals the full server path, enabling a remote attacker to learn the system layout. The available documents do n...