CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-8872

Malware in sbrugna...

8.8CVSS8.8AI score0.00527EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2017-14745

Malware in sbrugna...

9.8CVSS9.3AI score0.02443EPSS

Exploits0References7

Positive Technologies•added 2023/01/21 12:0 a.m.•3 views

PT-2023-19375 · Lightftp · Lightftp

Name of the Vulnerable Software and Affected Versions: LightFTP versions 1.0 through 2.2 LightFTP version 2.2 Description: A race condition in the software allows an attacker to achieve path traversal via a malformed FTP request. This occurs because a handler thread can use an overwritten...

7.5CVSS7.2AI score0.00259EPSS

Exploits1References6

NVD•added 2019/03/08 11:29 p.m.•12 views

CVE-2019-8276

UltraVNC revision 1211 has a stack buffer overflow vulnerability in VNC server code inside file transfer request handler, which can result in Denial of Service DoS. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1212...

7.5CVSS8.3AI score0.00732EPSS

Exploits0References3

NVD•added 2017/12/16 7:29 p.m.•10 views

CVE-2017-17715

The saveFile method in MediaController.java in the Telegram Messenger application before 2017-12-08 for Android allows directory traversal via a pathname obtained in a file-transfer request from a remote peer, as demonstrated by writing to tgnet.dat or tgnet.dat.bak...

8.8CVSS8.4AI score0.00527EPSS

Exploits0References1

UbuntuCve•added 2017/03/14 2:59 p.m.•13 views

CVE-2017-5668

bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list. NOTE: this vulnerability exists because of an incomplete fix for...

9.8CVSS7.3AI score0.02443EPSS

Exploits0References3

OSV•added 2017/03/14 2:59 p.m.•12 views

CVE-2017-5668

9.8CVSS8AI score

Exploits0References5

Cvelist•added 2017/03/14 2:0 p.m.•17 views

CVE-2016-10189

BitlBee before 3.5 allows remote attackers to cause a denial of service NULL pointer dereference and crash and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list...

8.8AI score0.01719EPSS

Exploits0References6

Cvelist•added 2009/03/03 4:0 p.m.•15 views

CVE-2008-6393

PSI Jabber client before 0.12.1 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a file transfer request with a negative value in a SOCKS5 option, which bypasses a signed integer check and triggers an integer overflow and a heap-based buffer...

8AI score0.23135EPSS

Exploits1References14

Symantec•added 2004/03/09 12:0 a.m.•13 views

Microsoft MSN Messenger Information Disclosure Vulnerability

Description Microsoft MSN Messenger is prone to an information disclosure vulnerability. When a malformed file transfer request is initiated by a remote user, they may be able to view the contents of files on the remote system. Technologies Affected Microsoft MSN Messenger Service 6.0 Microsoft M...

6.6AI score

Exploits0References1Affected Software1

Cvelist•added 2003/07/04 4:0 a.m.•16 views

CVE-2003-0505

Directory traversal vulnerability in Microsoft NetMeeting 3.01 2000 before SP4 allows remote attackers to read arbitrary files via "...." dot dot sequences in a file transfer request...

6.7AI score0.23166EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by