Lucene search
+L

362 matches found

securityvulns
securityvulns
added 2007/04/20 12:0 a.m.45 views

BlueArc Firmware 4.2.944b FTP bounce

Hi all, BlueArc Titan 2x00 devices running firmware version 4.2.944b are susceptible to FTP bounce attacks. The vendor has confirmed this, and a fix is available in the 4.3 firmware. Example: First connect to SSH, success Then to MySQL, no success Then to telnet, no success user@localhost $ ftp...

0.2AI score
Exploits0
NVD
NVD
added 2007/04/19 10:19 a.m.26 views

CVE-2007-2150

BlueArc-FTPD in BlueArc Titan 2x00 devices with firmware 4.2.944b allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command, a variant of CVE-1999-0017...

7.8CVSS6.4AI score0.01395EPSS
Exploits0References4
Prion
Prion
added 2007/04/19 10:19 a.m.23 views

Command injection

BlueArc-FTPD in BlueArc Titan 2x00 devices with firmware 4.2.944b allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command, a variant of CVE-1999-0017...

7.8CVSS6.8AI score0.01975EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2007/04/19 10:0 a.m.30 views

CVE-2007-2150

BlueArc-FTPD in BlueArc Titan 2x00 devices with firmware 4.2.944b allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command, a variant of CVE-1999-0017...

6.4AI score0.01395EPSS
Exploits0References4
CVE
CVE
added 2007/01/23 2:0 a.m.50 views

CVE-2006-6947

CVE-2006-6947 affects the NEC MultiWriter 1700C FTP server. The vulnerability allows remote attackers to redirect traffic to other sites via the PORT command (FTP bounce), a variant of CVE-1999-0017. The connected documents corroborate FTP bounce attributions for related FTP servers (e.g., pyftpd...

7.8CVSS6.6AI score0.01975EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2007/01/23 2:0 a.m.28 views

CVE-2006-6947

The FTP server in the NEC MultiWriter 1700C allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command, a variant of CVE-1999-0017...

6.2AI score0.01205EPSS
Exploits0References1
myhack58
myhack58
added 2006/10/23 12:0 a.m.17 views

Serv-U the bounce attack and use-vulnerability and early warning-the black bar safety net

The FTP bounce attack the FTP Bounce Attack is a very old technology, actually in our information security educational materials on find description, its indeed the age is. The so-called FTP bounce attack is to use the FTP Protocol PORT command to send the data to a third party, so you can use...

7.8AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2006/10/20 12:0 a.m.15 views

JVN#85996645 NEC MultiWriter 1700C/7500C FTP server vulnerability

Impact A remote attacker could possibly conduct a FTP bounce attack via the printer's FTP server against another host. Solution Products Affected NEC MultiWriter 1700C model number: PR-L1700C Network Expansion Card PR-L1700C-MC NEC ColorMultiWriter 7500C model number: PR-L7500C For more...

7.2AI score
Exploits0
securityvulns
securityvulns
added 2006/08/28 12:0 a.m.170 views

Multiple Fuji Xerox Printing Systems security vulnerabilities

FTP bounce attack, unauthorized Web interface access...

3.3AI score
Exploits0References1
securityvulns
securityvulns
added 2006/08/28 12:0 a.m.72 views

Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Indiana University Security Advisory: Fuji Xerox Printing Systems FXPS1 print engine vulnerabilities Advisory ID: 20060824FXPSPrintEngineVulnerabilities2 Revisions: 08-24-2006 2350 UTC 1.0 Initial Public Release Issues: FTP bounce attack is possible...

7.5CVSS7.1AI score0.02109EPSS
Exploits0
NVD
NVD
added 2006/08/25 1:4 a.m.28 views

CVE-2006-2112

Fuji Xerox Printing Systems FXPS print engine, as used in products including 1 Dell 3000cn through 5110cn and 2 Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy "FTP bounce" by using...

7.5CVSS6.9AI score0.02109EPSS
Exploits0References9
CVE
CVE
added 2006/08/25 1:0 a.m.61 views

CVE-2006-2112

Summary of CVE-2006-2112 : The FXPS print engine used in Dell 3000cn through 5110cn and Fuji Xerox DocuPrint firmware (pre-20060628) and Network Option Card firmware (pre-5.13) suffers an FTP bounce vulnerability. An remote attacker can use the FTP printing interface and arbitrary PORT arguments ...

7.5CVSS6.9AI score0.02109EPSS
Exploits0References9Affected Software19
Cvelist
Cvelist
added 2006/08/25 1:0 a.m.44 views

CVE-2006-2112

Fuji Xerox Printing Systems FXPS print engine, as used in products including 1 Dell 3000cn through 5110cn and 2 Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy "FTP bounce" by using...

6.9AI score0.02109EPSS
Exploits0References9
NVD
NVD
added 2006/04/04 2:4 p.m.11 views

CVE-2006-0559

Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed...

10CVSS7.6AI score0.06075EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2006/01/24 12:3 a.m.27 views

CVE-2006-0321

fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of service crash via crafted e-mail messages that cause a free of an invalid pointer when fetchmail bounces the message to the originator or local postmaster...

5CVSS5.9AI score0.035EPSS
Exploits0References1
OSV
OSV
added 2006/01/24 12:3 a.m.1 views

DEBIAN-CVE-2006-0321

fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of service crash via crafted e-mail messages that cause a free of an invalid pointer when fetchmail bounces the message to the originator or local postmaster...

5CVSS6.7AI score0.035EPSS
Exploits0References1
securityvulns
securityvulns
added 2006/01/24 12:0 a.m.46 views

FetchMail mail processor DoS

Error on bounce message generation cause uninitialized memory reference...

2.6AI score
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.66 views

WS FTP Server Session Hijacking Vulnerability (Nov 2005)

WSFTP server is prone to session hijacking during passive connections and to a FTP bounce attack when a user submits a specially crafted FTP command. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

7.5CVSS6.3AI score0.01975EPSS
Exploits0References2
securityvulns
securityvulns
added 2005/10/13 12:0 a.m.39 views

Multiple Microsoft Distributed Transaction Controller DoS conditions

Problems with TIP protocols handling, bounce attack is possible...

1.5AI score
Exploits0References3
CVE
CVE
added 2005/06/21 4:0 a.m.53 views

CVE-2001-1484

CVE-2001-1484 concerns Alcatel ADSL modems where the TFTP service can be accessed without authentication. A remote attacker on the LAN can use a bounce attack to modify firmware and configuration, implying network-based access with low complexity and potential partial impacts to confidentiality, ...

7.5CVSS7AI score0.02364EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder