13 matches found
EUVD-2006-6933
Malware in sbrugna...
EUVD-2007-3477
Malware in sbrugna...
CVE-2007-3492
Conti FtpServer 1.0 allows remote authenticated users to cause a denial of service daemon crash via a certain string containing "//A:" in the argument to the LIST command...
Command injection
Conti FtpServer 1.0 allows remote authenticated users to cause a denial of service daemon crash via a certain string containing "//A:" in the argument to the LIST command...
CVE-2007-3492
Conti FtpServer 1.0 allows remote authenticated users to cause a denial of service daemon crash via a certain string containing "//A:" in the argument to the LIST command...
CVE-2007-3492
The vulnerability CVE-2007-3492 affects Conti FtpServer 1.0, where remote authenticated users can trigger a denial of service (daemon crash) by sending a crafted string containing "//A:" in the LIST command argument. The connected documents provide the same description across NVD and CVE records ...
CVE-2006-6949
Conti FTPServer 1.0 Build 2.8 stores user passwords in cleartext in MyServerSettings.ini, which allows local users to obtain sensitive information by reading this file...
CVE-2006-6950
Directory traversal vulnerability in Conti FTPServer 1.0 Build 2.8 allows remote attackers to read arbitrary files and list arbitrary directories via a .. dot dot in a filename argument...
CVE-2006-6949
Conti FTPServer 1.0 Build 2.8 stores user passwords in cleartext in MyServerSettings.ini, which allows local users to obtain sensitive information by reading this file...
CVE-2006-6950
The CVE-2006-6950 entry describes a directory traversal vulnerability in Conti FTPServer 1.0 Build 2.8. The issue allows remote attackers to read arbitrary files and list arbitrary directories by providing a filename containing .. (dot dot). The available sources (NVD/NVD-linked entries) confirm ...
CVE-2006-6950
Directory traversal vulnerability in Conti FTPServer 1.0 Build 2.8 allows remote attackers to read arbitrary files and list arbitrary directories via a .. dot dot in a filename argument...
CVE-2006-6949
CVE-2006-6949 affects Conti FTPServer 1.0 Build 2.8, where user passwords are stored in cleartext in MyServerSettings.ini. Local users can read this file to obtain sensitive credentials, enabling partial information disclosure. The vulnerability stems from storing passwords in plaintext in a conf...
Conti FTP不安全默认帐号及目录遍历漏洞
Conti FtpServer是Windows平台下的多线程FTP服务器。 Conti FTPServer在处理传送给各种命令的参数时存在输入验证错误,允许攻击者通过目录遍历攻击列出并下载FTP根目录以外任意位置的文件。 Conti FTPServer以明文将用户口令存储到了MyServerSettings.ini文件中,因此攻击者可以轻易的检索到口令,获得非授权访问。 Conti FTPServer 1.0 Build 2.8 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...