52 matches found
Novell NetMail NMAP STOR Buffer Overflow Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Novell NetMail. Successful exploitation requires the attacker to successfully authenticate to the affected service. The specific flaw exists in NetMail's implementation of the Network Messaging...
HP Tru64 4.05.1 - POSIX Threads Library Privilege Escalation
HP Tru64 4.05.1 - POSIX Threads Library Privilege Escalation source: https://www.securityfocus.com/bid/21035/info HP Tru64 is prone to a local privilege-escalation vulnerability. Exploiting this issue allows local attackers to execute arbitrary code with superuser privileges. Successful exploits...
CVE-2005-3057
The CVE-2005-3057 issue affects Fortinet FortiGate devices running FortiOS 2.8 (FortiOS 2.8MR10 and v3beta) and other versions before 3.0 MR1. The FTP component could bypass the Fortinet FTP antivirus engine by a race condition where an attacker sends an FTP STOR command and uploads a file before...
CVE-2006-0344
CVE-2006-0344 describes a directory traversal vulnerability in Intervations FileCOPA FTP Server 1.01 that allows remote attackers to read and write arbitrary files via a .. (dot dot) in the STOR and RETR commands. The vulnerability arises from insufficient validation in file path handling, enabli...
CVE-2005-3057
The FTP component in FortiGate 2.8 running FortiOS 2.8MR10 and v3beta, and other versions before 3.0 MR1, allows remote attackers to bypass the Fortinet FTP anti-virus engine by sending a STOR command and uploading a file before the FTP server response has been sent, as demonstrated using LFTP...
CVE-2004-1848
Ipswitch WS_FTP Server 4.0.2 is affected by a remote denial-of-service vulnerability involving a REST command with an oversized size argument, followed by a STOR of a smaller file, which can cause disk consumption and bypass file-size restrictions. The issue is documented under CVE-2004-1848; rel...
CVE-2004-1626
This CVE involves Ability Server 2.34 (and possibly other versions), where a stack-based buffer overflow is triggered by parsing the STOR/APPE commands, allowing remote code execution. The issue is confirmed on 2.34 and has been reported in 2.25 and 2.32. A Metasploit exploit module exists (explo...
PT-2004-2747 · Ipswitch · Ipswitch Ws Ftp Server
Name of the Vulnerable Software and Affected Versions: Ipswitch WS FTP Server version 4.0.2 Description: The issue allows remote attackers to cause a denial of service disk consumption and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller...
Ability Server vulnerable to buffer overflow
Overview A buffer overflow in the Ability Server may allow remote authenticated attackers to execute arbitrary code. Description A lack of input validation in Ability Server's FTP STOR command may allow a buffer overflow to occur. A remote authenticated attacker may be able to exploit this...
Ability FTP Server Multiple Command Remote Buffer Overflows
The remote host is running Ability FTP Server. It is reported that the remote version of this software is prone to a remote buffer overflow attack via the 'STOR' and 'APPE' commands. An attacker, exploiting this flaw, would only need to be able to craft and send a query to the FTP server on its...
CVE-2001-1156
CVE-2001-1156 affects TypSoft FTP Server 0.95. A remote attacker can cause a denial-of-service (CPU consumption) by sending a malformed path like ../../* to STOR or RETR. Public sources (OpenVAS/Nessus) describe the DoS condition; no exploitation specifics or fix details are provided in the conne...
CVE-2001-1156
TYPSoft FTP 0.95 allows remote attackers to cause a denial of service CPU consumption via a "../../" argument to 1 STOR or 2 RETR...