21 matches found
CVE-2019-20003
Feldtech easescreen Crystal 9.0 Web-Services 9.0.1.16265 allows Stored XSS via the Debug-Log and Display-Log components. This could be exploited when an attacker sends an crafted string for FTP authentication...
EUVD-2019-10560
Malware in sbrugna...
EUVD-2010-3668
Malware in sbrugna...
Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2023-2510)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : curl (EulerOS-SA-2023-1798)
According to the versions of the curl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability in input validation exists in curl 8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously...
AZL-25811 CVE-2023-27535 affecting package rust for versions less than 1.72.0-2
An authentication bypass vulnerability exists in libcurl 8.0.0 in the FTP connection reuse feature that can result in wrong credentials being used during subsequent transfers. Previously created connections are kept in a connection pool for reuse if they match the current setup. However, certain...
CVE-2019-20003
Feldtech easescreen Crystal 9.0 Web-Services 9.0.1.16265 allows Stored XSS via the Debug-Log and Display-Log components. This could be exploited when an attacker sends an crafted string for FTP authentication...
Design/Logic Flaw
Feldtech easescreen Crystal 9.0 Web-Services 9.0.1.16265 allows Stored XSS via the Debug-Log and Display-Log components. This could be exploited when an attacker sends an crafted string for FTP authentication...
CVE-2019-20003
Feldtech easescreen Crystal 9.0 Web-Services 9.0.1.16265 allows Stored XSS via the Debug-Log and Display-Log components. This could be exploited when an attacker sends an crafted string for FTP authentication...
KONE KGC 4.6.4 - Multiple Vulnerabilities
KONE KGC versions 4.6.4 and below suffer from unauthenticated remote code execution, denial of service, local file inclusion, and missing FTP access control vulnerabilities. Vulnerabilities in KONEs Group Controller KGC -------------------------------------------------------------------------...
Mabry Software FTPServer/X 1.0 Controls Format String Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9402/info It has been reported that FTPServer/X may be prone to a remote format string vulnerability when processing a malicious request from a client. The vulnerability presents itself when the server receives a maliciou...
BolinTech Dream FTP Server 1.0 User Name Format String Vulnerability (1)
No description provided by source. source: http://www.securityfocus.com/bid/9600/info It has been reported that Dream FTP Server may be prone to a remote format string vulnerability when processing a malicious request from a client for a username during FTP authentication. The issue could crash t...
BolinTech Dream FTP Server 1.0 User Name Format String Vulnerability (2)
No description provided by source. source: http://www.securityfocus.com/bid/9600/info It has been reported that Dream FTP Server may be prone to a remote format string vulnerability when processing a malicious request from a client for a username during FTP authentication. The issue could crash t...
CVE-2014-2735 - WinSCP: missing X.509 validation
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2014-003 Product: WinSCP Affected Versions: 5.5.2.4130 Tested Versions: 5.5.2.4130 Windows 7 32 bit and Windows 8.1 64 bit Vulnerability Type: Missing X.509 validation Risk Level: Medium Solution Status: Fixed Vendor Notification:...
TURCK BL20/BL67 Hardcoded Admin Account
Binary data scadaturckftpauth.nbin...
CVE-2010-3684
The FTP authentication module in Synology Disk Station 2.x logs passwords to the web application interface in cases of incorrect login attempts, which allows local users to obtain sensitive information by reading a log, a different vulnerability than CVE-2010-2453...
CVE-2010-3684
CVE-2010-3684 concerns the FTP authentication module in Synology Disk Station 2.x, where passwords are logged to the web interface during incorrect login attempts. This behavior allows local users to read sensitive credentials from the log, and is noted as a different issue from CVE-2010-2453. Co...
WinSATAN Backdoor Detection
WinSATAN is installed. This backdoor allows anyone to partially take control of the remote system. SPDX-FileCopyrightText: 2000 Julio César Hernández Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...
PlatinumFTP FTP Server format string vulnerability
Format string bug in username during FTP authentication...
BolinTech DreamFTP Server 1.0 - User Name Format String
// source: https://www.securityfocus.com/bid/9600/info It has been reported that Dream FTP Server may be prone to a remote format string vulnerability when processing a malicious request from a client for a username during FTP authentication. The issue could crash the server. Dream FTP Server...