Lucene search
+L

362 matches found

OSV
OSV
added 2018/01/26 8:29 p.m.1 views

DEBIAN-CVE-2017-12374

The ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to a lack of input validation checking mechanisms during certain mail...

7.5CVSS9.1AI score0.04982EPSS
Exploits1References1
CNVD
CNVD
added 2017/11/16 12:0 a.m.7 views

PSFTPd Windows FTP Server Bounce Scan Vulnerability

PSFTPd Windows FTP Server is a suite of FTP server software. The software supports protocols such as FTP, FTPS and SFTP. A bounce scanning vulnerability exists in PSFTPd Windows FTP Server version 10.0.4 Build 729, which stems from the program failing to prevent the default FTP bounce scanning. A...

4.3CVSS7AI score0.015EPSS
Exploits4References1
NVD
NVD
added 2017/11/15 4:29 p.m.22 views

CVE-2017-15269

The PSFTPd 10.0.4 Build 729 server does not prevent FTP bounce scans by default. These can be performed using "nmap -b" and allow performing scans via the FTP server...

4.3CVSS4.7AI score0.015EPSS
Exploits4References3
OSV
OSV
added 2017/11/15 4:29 p.m.9 views

CVE-2017-15269

The PSFTPd 10.0.4 Build 729 server does not prevent FTP bounce scans by default. These can be performed using "nmap -b" and allow performing scans via the FTP server...

4.3CVSS5.8AI score0.015EPSS
Exploits4References3
Prion
Prion
added 2017/11/15 4:29 p.m.13 views

Code injection

The PSFTPd 10.0.4 Build 729 server does not prevent FTP bounce scans by default. These can be performed using "nmap -b" and allow performing scans via the FTP server...

4CVSS4.9AI score0.015EPSS
Exploits4References3Affected Software1
Cvelist
Cvelist
added 2017/11/15 4:0 p.m.36 views

CVE-2017-15269

The PSFTPd 10.0.4 Build 729 server does not prevent FTP bounce scans by default. These can be performed using "nmap -b" and allow performing scans via the FTP server...

4.9AI score0.015EPSS
Exploits4References3
0day.today
0day.today
added 2017/11/15 12:0 a.m.71 views

PSFTPd Windows FTP Server 10.0.4 Build 729 - Log Injection / Use-After-Free Vulnerability

Exploit for windows platform in category dos / poc Multiple Vulnerabilities in PSFTPd Windows FTP Server ===================================================== Overview -------- Confirmed Affected Versions: 10.0.4 Build 729 Confirmed Patched Versions: None Vendor: Sergei Pleis Softwareentwicklung...

5CVSS4.9AI score0.08742EPSS
Exploits4
Packet Storm
Packet Storm
added 2017/11/10 12:0 a.m.77 views

PSFTPd Windows FTP Server 10.0.4 Build 729 Use-After-Free / Log Injection

X41 D-Sec GmbH Security Advisory: X41-2017-006 Multiple Vulnerabilities in PSFTPd Windows FTP Server ===================================================== Overview -------- Confirmed Affected Versions: 10.0.4 Build 729 Confirmed Patched Versions: None Vendor: Sergei Pleis Softwareentwicklung Vend...

5.6AI score0.08742EPSS
Exploits4
Broadcom
Broadcom
added 2017/05/02 12:0 a.m.10 views

BSA-2017-269

Security Advisory ID : BSA-2017-269 Component : OpenSSH Revision : 1.0: Interim The default configuration forOpenSSHenablesAllowTcpForwarding, which could allow remote authenticated users to perform a port bounce, when configured with an anonymous access program such asAnonCVS. Affected Products...

6.4CVSS6.8AI score0.11574EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/02/07 12:0 a.m.39 views

Debian: Security Advisory (DSA-3783-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.41943EPSS
Exploits1References3
NVD
NVD
added 2017/02/01 3:59 p.m.26 views

CVE-2016-9963

Exim before 4.87.1 might allow remote attackers to obtain the private DKIM signing key via vectors related to log files and bounce messages...

5.9CVSS5.5AI score0.03098EPSS
Exploits0References6
Prion
Prion
added 2017/02/01 3:59 p.m.28 views

Code injection

Exim before 4.87.1 might allow remote attackers to obtain the private DKIM signing key via vectors related to log files and bounce messages...

2.6CVSS6.9AI score0.03098EPSS
Exploits0References6Affected Software3
OSV
OSV
added 2017/02/01 3:59 p.m.4 views

DEBIAN-CVE-2016-9963

Exim before 4.87.1 might allow remote attackers to obtain the private DKIM signing key via vectors related to log files and bounce messages...

5.9CVSS9.5AI score0.03098EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2017/02/01 3:0 p.m.26 views

CVE-2016-9963

Exim before 4.87.1 might allow remote attackers to obtain the private DKIM signing key via vectors related to log files and bounce messages...

5.9CVSS5.9AI score0.03098EPSS
Exploits0
CVE
CVE
added 2017/02/01 3:0 p.m.113 views

CVE-2016-9963

Exim (mail transfer agent) is affected by CVE-2016-9963. Exim before 4.87.1 may leak the private DKIM signing key to log files via vectors related to log files and bounce messages. The leakage is contingent on specific configurations and log access, enabling an attacker with log access to obtain ...

5.9CVSS4.8AI score0.03098EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2016/12/16 12:0 a.m.6 views

UBUNTU-CVE-2016-9963

Exim before 4.87.1 might allow remote attackers to obtain the private DKIM signing key via vectors related to log files and bounce messages...

5.9CVSS6.6AI score0.03098EPSS
Exploits0References5
FreeBSD
FreeBSD
added 2016/12/15 12:0 a.m.40 views

exim -- DKIM private key leak

The Exim project reports: Exim leaks the private DKIM signing key to the log files. Additionally, if the build option EXPERIMENTALDSNINFO=yes is used, the key material is included in the bounce message...

5.9CVSS1.7AI score0.03098EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2016/10/12 12:0 a.m.4 views

VulnCheck KEV: CVE-2004-1653

The default configuration for OpenSSH enables AllowTcpForwarding, which could allow remote authenticated users to perform a port bounce, when configured with an anonymous access program such as AnonCVS...

6.4CVSS7.4AI score0.11574EPSS
Exploits0References1
Openbugbounty
Openbugbounty
added 2016/08/09 8:51 p.m.9 views

onlywire.com Open Redirect vulnerability

Vulnerable URL: http://onlywire.com/bounce?t=http://www.openbugbounty.org Details: Description| Value ---|--- Patched:| No Latest check for patch:| 30.07.2017 Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank| 38606 VIP website status:| Yes Check onlywire.com...

6.8AI score
Exploits0
hackapp
hackapp
added 2016/04/01 10:0 a.m.15 views

PAC-MAN Bounce - Base64 encoded String, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application PAC-MAN Bounce published at the 'play' market has multiple vulnerabilities...

Exploits0References1Affected Software1
Rows per page
Query Builder