Astra Linux - уязвимость в ruby2.5, jruby

A issue was discovered in Ruby between versions 2.6.7, 2.7.x up to 2.7.3, and 3.x up to 3.0.1. A malicious FTP server can use the PASV response to trick Net::FTP into connecting back to a specified IP address and port. This potentially allows curl to extract information about services that would...

CVE-2024-12511 SMB/FTP Address Book Scan Pass-back attack

With address book access, SMB/FTP settings could be modified, redirecting scans and possibly capturing credentials. This requires enabled scan functions and printer access...

Centova Cast 3.2.11 Arbitrary File Download

Exploit Title: Centova Cast 3.2.11 - Arbitrary File Download Date: 2019-11-17 Exploit Author: DroidU Vendor Homepage: https://centova.com Affected Version: =v3.2.11 Tested on: Debian 9, CentOS 7 !/bin/bash if "$4" = "" then echo "Usage: $0 centovacasturl user password ftpaddress" exit fi url=$1...

FTP Attack - Successful SITE EXEC Command

Binary data 6217.prm...

FTP Attack - Passive Port Scan

Binary data 6216.prm...

FTP Attack - File Hidden

Binary data 6215.prm...

FTP Attack - Hidden Directory Created

Binary data 6214.prm...

Tandberg MXP F7.0 - 'USER' Remote Buffer Overflow (PoC)

TANDBERG BoF v0.1 - Tandberg MXP F7.0 Buffer Overflow Vulnerability PoC By otokoyama + We crash the process FtpCt00 by sending a 251 char string of /x20 commonly known as a blank space.very simple + The BOF happens due to the system passing all usernames:passwords to a log file. + Vendor has fixe...

Canon Multi Function Devices FTP bounce attack

Device can be used for network attacks bouncing...