3 matches found
GlobalSCAPE EFT Recursive Deflate Stream DoS (CVE-2023-2990)
The version of GlobalSCAPE EFT installed on the remote host is 8.0.x prior to 8.0.0.38. A denial of service DoS vulnerability exists due to improper handling of a recursively compressed packet. An unauthenticated, remote attacker can exploit this issue, via specially crafted packeet, to cause the...
CVE-2023-2990
CVE-2023-2990 affects Fortra Globalscape EFT Admin Server. Versions prior to 8.1.0.16 are vulnerable to a denial-of-service when a compressed DeflateStream packet is processed, because a specially crafted message decompresses to itself and can trigger recursion/heap issues, potentially crashing t...
CVE-2023-2990 Fortra Globalscape Administration Server Denial of Service
Fortra Globalscape EFT versions before 8.1.0.16 suffer from a denial of service vulnerability, where a compressed message that decompresses to itself can cause infinite recursion and crash the service...