EUVD-2015-5317

Malware in sbrugna...

CVE-2015-5361

Background For regular, unencrypted FTP traffic, the FTP ALG can inspect the unencrypted control channel and open related sessions for the FTP data channel. These related sessions gates are specific to source and destination IPs and ports of client and server. The design intent of the...

Design/Logic Flaw

Background For regular, unencrypted FTP traffic, the FTP ALG can inspect the unencrypted control channel and open related sessions for the FTP data channel. These related sessions gates are specific to source and destination IPs and ports of client and server. The design intent of the...

Cisco IOS XE FTP ALG Denial of Service Vulnerability

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial of service vulnerability exists in the FTP Application Layer Gateway ALG feature used by Network Address Translation NAT, NAT64, and ZBFW in Cisco IOS XE. The vulnerabili...

Juniper Junos SRX Series FTP ALG ftps-extension TCP Port Exposure (JSA10706)

According to its self-reported version number, the remote Juniper Junos SRX series device is affected by a flaw in handling the ftps-extension option when the SRX secures the FTPS server. An unauthenticated, remote attacker can exploit this flaw to expose TCP ports for arbitrary data channels. No...