Lucene search
K

110 matches found

Prion
Prion
added 2018/05/17 3:29 a.m.19 views

Input validation

A vulnerability in the Secure Copy Protocol SCP server of Cisco Enterprise NFV Infrastructure Software NFVIS could allow an authenticated, remote attacker to access the shell of the underlying Linux operating system on the affected device. The vulnerability is due to improper input validation of...

9CVSS8.7AI score0.04569EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2018/05/17 3:29 a.m.4 views

CVE-2018-0279

A vulnerability in the Secure Copy Protocol SCP server of Cisco Enterprise NFV Infrastructure Software NFVIS could allow an authenticated, remote attacker to access the shell of the underlying Linux operating system on the affected device. The vulnerability is due to improper input validation of...

8.8CVSS6AI score0.04569EPSS
Exploits0References2
OSV
OSV
added 2016/04/07 11:59 p.m.3 views

UBUNTU-CVE-2016-2563

Stack-based buffer overflow in the SCP command-line utility in PuTTY before 0.67 and KiTTY 0.66.6.3 and earlier allows remote servers to cause a denial of service stack memory corruption or execute arbitrary code via a crafted SCP-SINK file-size response to an SCP download request...

9.8CVSS7.8AI score0.34216EPSS
Exploits4References5
BDU FSTEC
BDU FSTEC
added 2016/04/06 12:0 a.m.8 views

The vulnerability of the Cisco IOS operating system, which allows a intruder to trigger a service failure

The vulnerability of SCP and SFTP modules in the Cisco IOS operating system is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause service interruptions...

6.8CVSS6.5AI score0.0138EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/04/06 12:0 a.m.80 views

Cisco IOS XR SCP and SFTP Modules DoS (cisco-sa-20160323-ncs)

According to its self-reported version, the Cisco IOS XR software running on the remote device is affected by a denial of service vulnerability in the Secure Copy Protocol SCP and Secure FTP SFTP modules due to insecure permissions on certain files. An authenticated, remote attacker can exploit...

6.8CVSS6.6AI score0.0138EPSS
Exploits0References2
CNVD
CNVD
added 2016/03/26 12:0 a.m.5 views

Cisco NCS6000 IOS XR Software Secure Copy Protocol and Secure FTP Denial of Service Vulnerabilities

Cisco IOS XR for Cisco NCS6000 is a network operating system from Cisco that runs in the NCS 6000 series routers. A security vulnerability exists in the SCP and SFTP modules in Cisco IOS XR Software versions 5.0.0 through 5.2.5 for Cisco NCS 6000 due to the program failing to properly set...

6.8CVSS6.8AI score0.0138EPSS
Exploits0References1
Cisco
Cisco
added 2016/03/23 9:31 p.m.40 views

Cisco IOS XR Software SCP and SFTP Modules Denial of Service Vulnerability

A vulnerability in the Secure Copy Protocol SCP and Secure FTP SFTP modules of Cisco IOS XR Software could allow an authenticated, remote attacker to overwrite system files and cause a denial of service DoS condition. The vulnerability is due to improper setting of permissions on the filesystem f...

6.8CVSS6.5AI score0.0138EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2009/03/19 3:30 p.m.6 views

curl: local file access via unsafe redirects

The redirect implementation in curl and libcurl 5.11 through 7.19.3, when CURLOPTFOLLOWLOCATION is enabled, accepts arbitrary Location values, which might allow remote HTTP servers to 1 trigger arbitrary requests to intranet servers, 2 read or overwrite arbitrary files via a redirect to a file:...

6.8CVSS6.9AI score0.07812EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2005/07/12 6:12 p.m.7 views

security flaw

Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992...

4.3CVSS7.3AI score0.0182EPSS
Exploits0References4
OSV
OSV
added 2000/12/19 5:0 a.m.4 views

DEBIAN-CVE-2000-0992

Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. dot dot attack...

5CVSS7.1AI score0.0567EPSS
Exploits1References1
Rows per page
Query Builder