Lucene search
K

4 matches found

Debian
Debian
added 2008/12/21 2:24 p.m.29 views

[SECURITY] [DSA 1689-1] New proftpd-dfsg packages fix Cross-Site Request Forgery

-------------------------------------------------------------------------- Debian Security Advisory DSA 1689-1 [email protected] http://www.debian.org/security/ Martin Schulze December 21st, 2008 http://www.debian.org/security/faq -...

6.8CVSS6.2AI score0.07066EPSS
Exploits1
OSV
OSV
added 2008/09/25 7:25 p.m.4 views

CVE-2008-4242

ProFTPD 1.3.1 interprets long commands from an FTP client as multiple commands, which allows remote attackers to conduct cross-site request forgery CSRF attacks and execute arbitrary FTP commands via a long ftp:// URI that leverages an existing session from the FTP client implementation in a web...

7.3AI score
Exploits0References13
UbuntuCve
UbuntuCve
added 2008/09/25 7:25 p.m.32 views

CVE-2008-4242

ProFTPD 1.3.1 interprets long commands from an FTP client as multiple commands, which allows remote attackers to conduct cross-site request forgery CSRF attacks and execute arbitrary FTP commands via a long ftp:// URI that leverages an existing session from the FTP client implementation in a web...

6.8CVSS6.1AI score0.07066EPSS
Exploits1References1
CVE
CVE
added 2008/09/25 7:0 p.m.99 views

CVE-2008-4242

CVE-2008-4242 concerns ProFTPD 1.3.1, where the server interprets long commands from an FTP client as multiple commands. This enables remote attackers to perform CSRF attacks and execute arbitrary FTP commands via a long ftp:// URI that reuses an existing browser/FTP client session. Connected rec...

6.8CVSS7.8AI score0.07066EPSS
Exploits1References13Affected Software1
Rows per page
Query Builder