Lucene search
+L

362 matches found

CVE
CVE
added 2003/04/02 5:0 a.m.57 views

CVE-2002-0538

CVE-2002-0538 concerns the FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0, which rewrites FTP PORT responses to enable remote attackers to redirect FTP data connections to arbitrary ports. This is described as a variant of the FTP bounce vulnerability. The connected documents corr...

7.5CVSS7.1AI score0.0167EPSS
Exploits0References5Affected Software3
securityvulns
securityvulns
added 2002/10/26 12:0 a.m.42 views

IPSwitch WS_FTP ftp bounce attack

No description provided...

1.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2002/10/26 12:0 a.m.28 views

IPSwitch, Inc. WS_FTP Server

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Product: IPSwitch, Inc. WSFTP Server Versions: v3.13 dated 2002.08.07, possibly others. Severity: Medium-Hot Author: low halo [email protected] Date: October 25th, 2002 Revision: 1.0 Overview WSFTP v3.13 by IPSwitch, Inc., is vulnerable to the...

Exploits0
NVD
NVD
added 2002/07/03 4:0 a.m.13 views

CVE-2002-0538

FTP proxy in Symantec Raptor Firewall 6.5.3 and Enterprise 7.0 rewrites an FTP server's "FTP PORT" responses in a way that allows remote attackers to redirect FTP data connections to arbitrary ports, a variant of the "FTP bounce" vulnerability...

7.5CVSS6.7AI score0.0167EPSS
Exploits0References5
NVD
NVD
added 2002/05/16 4:0 a.m.17 views

CVE-2002-0222

Etype Eserv 2.97 allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command...

7.5CVSS6.7AI score0.01571EPSS
Exploits0References3
Cvelist
Cvelist
added 2002/05/03 4:0 a.m.17 views

CVE-2002-0222

Etype Eserv 2.97 allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command...

6.7AI score0.01571EPSS
Exploits0References3
CVE
CVE
added 2002/05/03 4:0 a.m.55 views

CVE-2002-0222

The CVE-2002-0222 entry concerns Etype Eserv 2.97, where the PORT command enables an FTP bounce attack. An attacker can redirect data connections to arbitrary hosts, potentially affecting confidentiality, integrity, and availability. The NVD notes a network-accessible, low-complexity exploit with...

7.5CVSS6.7AI score0.01571EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2002/04/16 12:0 a.m.32 views

Raptor Firewall FTP Bounce vulnerability

Raptor Firewall FTP Bounce vulnerability Summary: The Raptor Firewall can make an FTP server behind it vulnerable to the well-known FTP bounce vulnerability even if the FTP server used is not susceptible to this issue. Overview: While performing a penetration test for a customer, we discovered th...

7AI score
Exploits0
NVD
NVD
added 2002/03/25 5:0 a.m.12 views

CVE-2002-0139

Pi-Soft SpoonFTP 1.1 and earlier allows remote attackers to redirect traffic to other sites aka FTP bounce via the PORT command...

7.5CVSS6.7AI score0.0245EPSS
Exploits0References4
securityvulns
securityvulns
added 2002/01/30 12:0 a.m.53 views

Vulnerabilities in EServ 2.97

There are a couple of vulnerabilities in EServ 2.97. Vulnerability 1 The FTP server doesn't close the sockets that are allocated from using the PASV command. After all ports from 1024 to 5000 are listening after running a lot of PASV commands in a row no users can use passive mode anymore until t...

1.8AI score
Exploits0
securityvulns
securityvulns
added 2002/01/21 12:0 a.m.40 views

Релеинг соединений в SpoonFTP (ftp bounce attack)

При установке Ftp-data соединения не проверяются привелигерованные порты и IP адрес назначения...

0.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2002/01/21 12:0 a.m.46 views

Bounce vulnerability in SpoonFTP 1.1.0.1

The vulnerability: The FTP server is vulnerable to the FTP bounce attack, even against ports lower than 1024. Vendor Response: Pi-Soft have created a new version that among other things fix this vulnerability. Their response was very nice and quick. /Arne Vidstrom, http://ntsecurity.nu...

1.8AI score
Exploits0
CVE
CVE
added 2001/01/22 5:0 a.m.56 views

CVE-2000-0813

Technical details about CVE-2000-0813 are not publicly provided in the connected documents you supplied. The materials do not specify affected products/versions beyond Check Point VPN-1/FireWall-1 4.1 and earlier, nor concrete remediation steps. Monitor for updates.

5CVSS7AI score0.01696EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.21 views

CVE-2000-0813

Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers "FTP Bounce" via invalid FTP commands that are processed improperly by FireWall-1, aka "FTP Connection Enforcement Bypass."...

6.9AI score0.01696EPSS
Exploits0References3
NVD
NVD
added 2000/11/14 5:0 a.m.15 views

CVE-2000-0813

Check Point VPN-1/FireWall-1 4.1 and earlier allows remote attackers to redirect FTP connections to other servers "FTP Bounce" via invalid FTP commands that are processed improperly by FireWall-1, aka "FTP Connection Enforcement Bypass."...

5CVSS6.9AI score0.01696EPSS
Exploits0References3
CVE
CVE
added 1999/09/29 4:0 a.m.246 views

CVE-1999-0017

CVE-1999-0017 is a documented FTP bounce vulnerability where an FTP server can be abused to connect to arbitrary ports on an attacker-controlled host by exploiting the PORT/PORT-like mechanisms. The core issue is that an FTP server’s data connection handling allows bounce traffic to other hosts (...

7.5CVSS6.3AI score0.01975EPSS
Exploits0References1Affected Software2
Packet Storm
Packet Storm
added 1999/08/17 12:0 a.m.26 views

solaris-2.7-finger-bounce.txt

Date: Sat, 26 Dec 1998 20:08:38 -0500 From: spoon To: [email protected] Subject: lame old finger bounce bug still exists in sparc 2.7 Hi, while beating on solaris today i found this... Yeah and finger is still enabled in inetd.conf by default in solaris 2.7. suprised this still exists... shrug...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 1999/06/22 12:0 a.m.1428 views

FTP Privileged Port Bounce Scan

It is possible to force the remote FTP server to connect to third parties using the PORT command. The problem allows intruders to use your network resources to scan other hosts, making them think the attack comes from your network. TRUSTED...

7.5CVSS5.4AI score0.01975EPSS
Exploits0References2
NVD
NVD
added 1997/12/10 5:0 a.m.42 views

CVE-1999-0017

FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP client, aka FTP bounce...

7.5CVSS0.01975EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 1997/12/10 12:0 a.m.4 views

PT-1997-1005 · Ibm +8 · Aix +10

Name of the Vulnerable Software and Affected Versions: FTP servers affected versions not specified Description: The issue allows an attacker to connect to arbitrary ports on machines other than the FTP client. This is also known as FTP bounce. Recommendations: At the moment, there is no informati...

7.5CVSS5.9AI score0.01975EPSS
Exploits0References2
Rows per page
Query Builder