130 matches found
Directory traversal
Directory traversal vulnerability in the FTP client in Glub Tech Secure FTP before 2.5.16 on Windows allows remote FTP servers to create or overwrite arbitrary files via a ..\ dot dot backslash in a response to a LIST command, a related issue to CVE-2002-1345...
CVE-2008-2821
Directory traversal vulnerability in the FTP client in Glub Tech Secure FTP before 2.5.16 on Windows allows remote FTP servers to create or overwrite arbitrary files via a ..\ dot dot backslash in a response to a LIST command, a related issue to CVE-2002-1345...
CVE-2008-2821
Technical details about CVE-2008-2821 are not publicly provided in the supplied documents. Monitor for updates from official advisories.
Jscape Secure FTP Applet sessions spoofing
SSH key is not checked...
n.runs-SA-2008.001 - Jscape Secure FTP Applet
n.runs AG http://www.nruns.com/ securityatnruns.com n.runs-SA-2008.001 23-June-2008 Vendor: Jscape, http://www.jscape.com/ Affected Products: Jscape Secure FTP Applet http://www.jscape.com/sftpapplet/index.html Vulnerability: SSH Host key is not verified allowing for Man in the Middle attacks Ris...
Glub Tech Secure FTP 2.5.15 - LIST Directory Traversal
Glub Tech Secure FTP 2.5.15 - LIST Directory Traversal source: https://www.securityfocus.com/bid/29741/info Glub Tech Secure FTP is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. This issue occurs in the FTP client...
Glub Tech Secure FTP 2.5.15 - 'LIST' Directory Traversal
source: https://www.securityfocus.com/bid/29741/info Glub Tech Secure FTP is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. This issue occurs in the FTP client. Exploiting these issues will allow an attacker to write...
Design/Logic Flaw
Unspecified vulnerability in GlobalSCAPE Secure FTP Server before 3.1.4 Build 01.10.2006 allows attackers to cause a denial of service application crash via a "custom command" with a long argument...
CVE-2006-1693
Unspecified vulnerability in GlobalSCAPE Secure FTP Server before 3.1.4 Build 01.10.2006 allows attackers to cause a denial of service application crash via a "custom command" with a long argument...
CVE-2006-1693
Unspecified vulnerability in GlobalSCAPE Secure FTP Server before 3.1.4 Build 01.10.2006 allows attackers to cause a denial of service application crash via a "custom command" with a long argument...
CVE-2006-1693
GlobalSCAPE Secure FTP Server (gsftps) is affected up to version 3.1.4 Build 01.10.2006. The vulnerability allows remote attackers to trigger a denial-of-service (application crash) by sending a lengthy parameter to an unspecified custom command, due to an unspecified root-cause in the handling o...
KLA10144 DoS vulnerability in Secure FTP
An unspecified vulnerability was found in the Secure FTP Server. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network via a specially designed custom command Original advisories - Related products...
GlobalSCAPE Secure FTP Server (gsftps) Custom Command Long Parameter DoS
GlobalSCAPE Secure FTP Server is installed on the remote Windows host. According to the registry, the version of GlobalSCAPE Secure FTP Server on the remote host is affected by a denial of service vulnerability involving a lengthy parameter line to an unspecified custom command. C Tenable Network...
GlobalSCAPE Secure FTP Server Input Overflow
This module exploits a buffer overflow in the GlobalSCAPE Secure FTP Server. All versions prior to 3.0.3 are affected by this flaw. A valid user account or anonymous access is required for this exploit to work. This module requires Metasploit: https://metasploit.com/download Current source:...
GlobalSCAPE Secure FTP Server User Input Overflow
The remote host is running GlobalSCAPE Secure FTP Server. GlobalSCAPE Secure FTP Server 3.0.2 and prior versions are affected by a buffer overflow due to mishandling the user-supplied input. An attacker would first need to authenticate to the server before they can execute arbitrary commands...
CVE-2004-2366
The CVE references a buffer overflow in GlobalSCAPE Secure FTP Server 2.0 B03.11.2004.2. An attacker could trigger a denial of service (crash) by sending a SITE command with a long argument, constituting a remote exploit vector against the affected server. The root cause is the overflow condition...
CVE-2004-2366
Buffer overflow in GlobalSCAPE Secure FTP Server 2.0 B03.11.2004.2 allows remote attackers to cause a denial of service crash via a SITE command with a long argument...
GlobalSCAPE Secure FTP Server User Input Overflow
The remote host is running GlobalSCAPE Secure FTP Server. GlobalSCAPE Secure FTP Server 3.0.2 and prior versions are affected by a buffer overflow due to mishandling the user-supplied input. An attacker would first need to authenticate to the server before they can execute arbitrary commands...
globalscape_ftp_30.pm
This file is part of the Metasploit Framework and may be redistributed according to the licenses defined in the Authors field below. In the case of an unknown or missing license, this file defaults to the same license as the core Framework dual GPLv2 and Artistic. The latest version of the...
CVE-2005-1415
Buffer overflow in GlobalSCAPE Secure FTP Server 3.0.2 allows remote authenticated users to execute arbitrary code via a long FTP command...