362 matches found
BlueArc Firmware 4.2.944b FTP bounce
Hi all, BlueArc Titan 2x00 devices running firmware version 4.2.944b are susceptible to FTP bounce attacks. The vendor has confirmed this, and a fix is available in the 4.3 firmware. Example: First connect to SSH, success Then to MySQL, no success Then to telnet, no success user@localhost $ ftp...
CVE-2007-2150
BlueArc-FTPD in BlueArc Titan 2x00 devices with firmware 4.2.944b allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command, a variant of CVE-1999-0017...
Command injection
BlueArc-FTPD in BlueArc Titan 2x00 devices with firmware 4.2.944b allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command, a variant of CVE-1999-0017...
CVE-2007-2150
BlueArc-FTPD in BlueArc Titan 2x00 devices with firmware 4.2.944b allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command, a variant of CVE-1999-0017...
CVE-2006-6947
CVE-2006-6947 affects the NEC MultiWriter 1700C FTP server. The vulnerability allows remote attackers to redirect traffic to other sites via the PORT command (FTP bounce), a variant of CVE-1999-0017. The connected documents corroborate FTP bounce attributions for related FTP servers (e.g., pyftpd...
CVE-2006-6947
The FTP server in the NEC MultiWriter 1700C allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command, a variant of CVE-1999-0017...
Serv-U the bounce attack and use-vulnerability and early warning-the black bar safety net
The FTP bounce attack the FTP Bounce Attack is a very old technology, actually in our information security educational materials on find description, its indeed the age is. The so-called FTP bounce attack is to use the FTP Protocol PORT command to send the data to a third party, so you can use...
JVN#85996645 NEC MultiWriter 1700C/7500C FTP server vulnerability
Impact A remote attacker could possibly conduct a FTP bounce attack via the printer's FTP server against another host. Solution Products Affected NEC MultiWriter 1700C model number: PR-L1700C Network Expansion Card PR-L1700C-MC NEC ColorMultiWriter 7500C model number: PR-L7500C For more...
Multiple Fuji Xerox Printing Systems security vulnerabilities
FTP bounce attack, unauthorized Web interface access...
Indiana University Security Advisory: Fuji Xerox Printing Systems (FXPS) print engine vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Indiana University Security Advisory: Fuji Xerox Printing Systems FXPS1 print engine vulnerabilities Advisory ID: 20060824FXPSPrintEngineVulnerabilities2 Revisions: 08-24-2006 2350 UTC 1.0 Initial Public Release Issues: FTP bounce attack is possible...
CVE-2006-2112
Fuji Xerox Printing Systems FXPS print engine, as used in products including 1 Dell 3000cn through 5110cn and 2 Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy "FTP bounce" by using...
CVE-2006-2112
Summary of CVE-2006-2112 : The FXPS print engine used in Dell 3000cn through 5110cn and Fuji Xerox DocuPrint firmware (pre-20060628) and Network Option Card firmware (pre-5.13) suffers an FTP bounce vulnerability. An remote attacker can use the FTP printing interface and arbitrary PORT arguments ...
CVE-2006-2112
Fuji Xerox Printing Systems FXPS print engine, as used in products including 1 Dell 3000cn through 5110cn and 2 Fuji Xerox DocuPrint firmware before 20060628 and Network Option Card firmware before 5.13, allows remote attackers to use the FTP printing interface as a proxy "FTP bounce" by using...
CVE-2006-0559
Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed...
CVE-2006-0321
fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of service crash via crafted e-mail messages that cause a free of an invalid pointer when fetchmail bounces the message to the originator or local postmaster...
DEBIAN-CVE-2006-0321
fetchmail 6.3.0 and other versions before 6.3.2 allows remote attackers to cause a denial of service crash via crafted e-mail messages that cause a free of an invalid pointer when fetchmail bounces the message to the originator or local postmaster...
FetchMail mail processor DoS
Error on bounce message generation cause uninitialized memory reference...
WS FTP Server Session Hijacking Vulnerability (Nov 2005)
WSFTP server is prone to session hijacking during passive connections and to a FTP bounce attack when a user submits a specially crafted FTP command. SPDX-FileCopyrightText: 2005 David Maciejak Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...
Multiple Microsoft Distributed Transaction Controller DoS conditions
Problems with TIP protocols handling, bounce attack is possible...
CVE-2001-1484
CVE-2001-1484 concerns Alcatel ADSL modems where the TFTP service can be accessed without authentication. A remote attacker on the LAN can use a bounce attack to modify firmware and configuration, implying network-based access with low complexity and potential partial impacts to confidentiality, ...