73 matches found
Gene6 BPFTP FTP Server 2.0 - User Credentials Disclosure
source: https://www.securityfocus.com/bid/2534/info G6 FTP Server now known as BPFTP Server is an internet FTP server by Gene6 If a logged in FTP user connects to an external share and submits a malformed 'size' or 'mdtm' command, the user could force the FTP server to make an external SMB...
Warftp 1.67b04 Directory Traversal
Overview: by adding a special formed argument to the dir command, it is possible to list the /../ directory. Detail: the command is the following: dir ./../.. Log: Verbindung mit 10.17.3.44 wurde hergestellt. 220- Jgaa's Fan Club FTP Service WAR-FTPD 1.67- 04 Ready 220 Please enter your user name...
CVE-2001-0019
Arrowpoint aka Cisco Content Services, or CSS allows local users to cause a denial of service via a long argument to the "show script," "clear script," "show archive," "clear archive," "show log," or "clear log" commands...
Infobot-0.44.5.3.txt
Advisory: Infobot 0.44.5.3 and below vulnerability Hack-X This version and versions from before were also released into the FreeBSD ports tree. Currently there is no patched version even though I emailed the author over a month ago about this and emailed the development list over a week, and them...
ProFTPd 1.2.0 pre10 - Remote Denial of Service
/ ProFTPd DoS version 1.1 Remote DoS in proFTPd Code by: JeT-Li -The Wushu Master- [email protected] Recently I posted a remote DoS for ProFTPd based in the multiple use of the SIZE command in order to crash the system. Now and thanks to the information provided by Wojciech Purczynski I have cod...
WFTPD 2.4.1RC11 - REST Malformed File Write Denial of Service
WFTPD 2.4.1RC11 - REST Malformed File Write Denial of Service source: https://www.securityfocus.com/bid/1506/info WFTPD versions prior to 2.4.1RC11 suffer from a number of vulnerabilities. 1 Issuing a STAT command while a LIST is in progress will cause the ftp server to crash. 2 If the REST comma...
Alt-N MDaemon 2.8.5 - UIDL Denial of Service
Alt-N MDaemon 2.8.5 - UIDL Denial of Service source: https://www.securityfocus.com/bid/1366/info A remote user is capable of crashing Alt-N MDaemon 2.8.5.0 by executing the pass command, then the UIDL command and quitting the mail server before the UIDL has returned a response. This must be done...
UoW IMAPd Server 10.234/12.264 - LSUB Buffer Overflow (Metasploit)
source: https://www.securityfocus.com/bid/1110/info A buffer overflow exists in imapd. The vulnerability exists in the list command. By supplying a long, well-crafted string as the second argument to the list command, it becomes possible to execute code on the machine. Executing the list command...
RedHat 4.x/5.x/6.x / RedHat man 1.5 / Turbolinux man 1.5 / Turbolinux 3.5/4.x - 'man' Buffer Overrun (2)
/ source: https://www.securityfocus.com/bid/1011/info RedHat 4.0/4.1/4.2/5.0/5.1/5.2/6.0/6.2,RedHat man 1.5,Turbolinux man 1.5,Turbolinux 3.5/4.2/4.4 man Buffer Overrun Vulnerability A buffer overflow exists in the implementation of the 'man' program shipped with RedHat Linux, and other LInux...
Pragma Systems InterAccess TelnetD Server 4.0 Build 4 - Buffer Overflow
source: https://www.securityfocus.com/bid/995/info The Pragma Systems InterAccess TelnetID Server 4.0 Build 4 has an unchecked buffer in the code that handles login commands. Arbitrary code is capable of being executed on the InterAccess TelnetD Server if a string of over 300 characters is used a...
Microsoft Internet Explorer 5.0/4.0.1 - iFrame
Microsoft Internet Explorer 5.0 for Windows 2000/Windows 95/Windows 98/Windows NT 4,Internet Explorer 4.0.1 for Windows 98/Windows NT 4.0/Unix 5.0 IFRAME Vulnerability source: https://www.securityfocus.com/bid/696/info Internet Explorer 5 will allow a malicious web page to read the contents of...
solaris.7.procfs.dos.txt
Date: Tue, 9 Mar 1999 22:17:19 +0200 From: Toomas Soome To: [email protected] Subject: 64 bit Solaris 7 procfs bug hi! there is bug with 64 bit solaris 7 procfs, every nonprivileged user can crash computer with command 'more /proc/self/psinfo'. Tested with UE3000, U10, UE450. This bug has been...
NetBSD 1.3.2 / SGI IRIX 6.5.1 - 'at(1)' Read File
source: https://www.securityfocus.com/bid/331/info A vulnerability exists in NetBSD version 1.3.2 and lower, and Silicon Graphics Inc's IRIX versions 6.2, 6.3, 6.4, 6.5 and 6.5.1. The at1 program can be supplied with a -f flag, and an error is access validation can result in the mailing of portio...