RICOH DL Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2012-5002)

Stack-based buffer overflow in SR10 FTP server SR10.exe 1.1.0.6 in Ricoh DC Software DL-10 4.5.0.1, when the Log file name option is enabled, allows remote attackers to execute arbitrary code via a long USER FTP command. This plugin only works with Tenable.ot. Please visit...

CVE-2012-5002

Vulnerability CVE-2012-5002 affects Ricoh DC Software DL-10 SR10 FTP Server (SR10.exe) version 1.1.0.6. The flaw is a stack-based buffer overflow triggered by a long USER command when the Log file name option is enabled, enabling remote code execution under the FTP user context. Multiple sources ...

Ricoh DC Software DL-10 FTP Server 'USER' Command Buffer Overflow Vulnerability

Ricoh DC Software DL-10 FTP Server is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ricoh DC DL-10 SR10 FTP USER Command Buffer Overflow

This module exploits a vulnerability found in Ricoh DC's DL-10 SR10 FTP service. By supplying a long string of data to the USER command, it is possible to trigger a stack-based buffer overflow, which allows remote code execution under the context of the user. Please note that in order to trigger...