Lucene search
K

172 matches found

Positive Technologies
Positive Technologies
added 2006/06/14 12:0 a.m.6 views

PT-2006-3920 · Winscp · Winscp

Name of the Vulnerable Software and Affected Versions: WinSCP version 3.8.1 build 328 Description: The issue allows remote attackers to upload or download arbitrary files via encoded spaces and double-quote characters in a scp or sftp URI. Recommendations: For WinSCP version 3.8.1 build 328, upda...

7.1CVSS6.8AI score0.06453EPSS
Exploits1References10
Kaspersky
Kaspersky
added 2006/06/14 12:0 a.m.28 views

KLA11446 SB vulnerability in WinSCP

Argument injection vulnerability was found in WinSCP. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Older Versions Related products WinSCP CVE list CVE-2006-3015 high Solution Update to the latest version Download WinSCP Impacts SB Security...

7.1CVSS6.8AI score0.06453EPSS
Exploits1References3
exploitpack
exploitpack
added 2006/06/12 12:0 a.m.14 views

WinSCP 3.8.1 - URI Handler Arbitrary File Access

WinSCP 3.8.1 - URI Handler Arbitrary File Access source: https://www.securityfocus.com/bid/18384/info WinSCP is prone to an arbitrary file-access vulnerability. An attacker can exploit this issue to upload arbitrary files to a victim user's computer or to download arbitrary files from the victim'...

0.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/06/12 12:0 a.m.15 views

WinSCP < 3.8.2 Arbitrary Command Insertion

Binary data 3648.prm...

7.1CVSS7.3AI score0.06453EPSS
Exploits1References1
Exploit DB
Exploit DB
added 2006/06/12 12:0 a.m.26 views

WinSCP 3.8.1 - URI Handler Arbitrary File Access

source: https://www.securityfocus.com/bid/18384/info WinSCP is prone to an arbitrary file-access vulnerability. An attacker can exploit this issue to upload arbitrary files to a victim user's computer or to download arbitrary files from the victim's computer in the context of the vulnerable...

7AI score
Exploits0
securityvulns
securityvulns
added 2006/06/11 12:0 a.m.31 views

[Full-disclosure] WinSCP - URI Handler Command Switch Parsing

WinSCP - URI Handler Command Switch Parsing About winscp : WinSCP is an open source freeware SFTP client for Windows using SSH. Legacy SCP protocol is also supported. Its main function is safe copying of files between a local and a remote computer. Versions affected : It was tested on WinSCP 3.8....

0.8AI score
Exploits0
securityvulns
securityvulns
added 2006/06/11 12:0 a.m.62 views

WinSCP URI handler command execution

scp:// and sftp:// URI handlers allow to transmit unsafe paramters via command line...

4.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2004/04/16 12:0 a.m.33 views

[NT] WinSCP Denial of Service

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2004/04/16 12:0 a.m.58 views

WinSCP DoS

Oversized URL causes client to hang...

1AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2004/04/16 12:0 a.m.18 views

WinSCP 3.5.6 - Long URI Handling Memory Corruption

WinSCP 3.5.6 - Long URI Handling Memory Corruption source: https://www.securityfocus.com/bid/10160/info It has been reported that WinSCP may be prone to a denial of service condition resulting from memory corruption. This issue occurs when the application attempts to handle excessively long 'sftp...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/04/16 12:0 a.m.27 views

WinSCP 3.5.6 - Long URI Handling Memory Corruption

source: https://www.securityfocus.com/bid/10160/info It has been reported that WinSCP may be prone to a denial of service condition resulting from memory corruption. This issue occurs when the application attempts to handle excessively long 'sftp:' or 'scp' addresses. WinSCP 3.5.6 is reported to ...

7AI score
Exploits0
securityvulns
securityvulns
added 2002/12/17 12:0 a.m.58 views

R7-0009: Vulnerabilities in SSH2 Implementations from Multiple Vendors

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Rapid 7, Inc. Security Advisory Visit http://www.rapid7.com/ to download NeXposetm, our advanced vulnerability scanner. Linux and Windows 2000 versions are available now! Rapid 7 Advisory R7-0009 Vulnerabilities in SSH2 Implementations from Multiple...

10CVSS0.7AI score0.80233EPSS
Exploits6
Rows per page
Query Builder