EUVD-1999-1495

Malware in sbrugna...

Command Injection in expressfs

All versions of expressfs are vulnerable to Command Injection. The package does not validate user input on several API endpoints, allowing attackers to run arbitrary commands in the system. The affected endpoints are: expressfs.appendFile, expressfs.cp, expressfs.create and expressfs.rmdir...

GHSA-MXMJ-84Q8-34R7 Command Injection in expressfs

All versions of expressfs are vulnerable to Command Injection. The package does not validate user input on several API endpoints, allowing attackers to run arbitrary commands in the system. The affected endpoints are: expressfs.appendFile, expressfs.cp, expressfs.create and expressfs.rmdir...

Command Injection

expressfs is susceptible to command injection. The attacker can inject arbitrary commands because it does not properly escape inputs provided by the users through the following API endpoints : expressfs.appendFile, expressfs.cp, expressfs.create and expressfs.rmdir...

CVE-1999-1514

Buffer overflow in Celtech ExpressFS FTP server 2.x allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long USER command...

CVE-1999-1514

Buffer overflow in Celtech ExpressFS FTP server 2.x allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long USER command...

CVE-1999-1514

CVE-1999-1514 affects the Celtech ExpressFS FTP server 2.x. The underlying issue is a buffer overflow triggered by a long USER command, leading to remote denial of service and potentially arbitrary command execution. The vulnerability is exploitable over the network via the FTP protocol. The prov...

expressfs.ftpserver.txt

ExpressFS 2.x Server ExpressFS 2.x FTP Server Problem: we found in the ExpressFS 2.x FTP Server and earlier a vulnerable to remotely exploitable bufferoverflow This can result in a denial of service and at worst in arbitrary code being executed on the system. The vulnerabilities are the conjuncti...