24 matches found
CVE-2026-44240
basic-ftp is an FTP client for Node.js. Prior to 5.3.1, basic-ftp is vulnerable to client-side denial of service when parsing FTP control-channel multiline responses. A malicious or compromised FTP server can send an unterminated multiline response during the initial FTP banner phase, before...
PT-2026-38291
Name of the Vulnerable Software and Affected Versions basic-ftp versions 0.0.1 through 5.3.0 Description A client-side denial of service exists when parsing FTP control-channel multiline responses. A malicious or compromised FTP server can send an unterminated multiline response during the initia...
EUVD-2002-1082
Malware in sbrugna...
EUVD-2003-0366
Malware in sbrugna...
EUVD-2025-21424
Malicious code in bioql PyPI...
CVE-2025-34107
A buffer overflow vulnerability exists in the WinaXe FTP Client version 7.7 within the FTP banner parsing functionality, WCMDPA10.dll. When the client connects to a remote FTP server and receives an overly long '220 Server Ready' response, the vulnerable component responsible for parsing the bann...
CVE-2025-34107
A buffer overflow vulnerability exists in the WinaXe FTP Client version 7.7 within the FTP banner parsing functionality, WCMDPA10.dll. When the client connects to a remote FTP server and receives an overly long '220 Server Ready' response, the vulnerable component responsible for parsing the bann...
CVE-2025-34107
CVE-2025-34107 affects WinaXe FTP Client 7.7. The vulnerability lies in the FTP banner parsing function of WCMDPA10.dll: when the client receives an overly long ‘220 Server Ready’ response, a stack buffer overflow occurs, potentially allowing arbitrary code execution in the user’s context. Docume...
CVE-2025-34107 WinaXe 7.7 FTP Client Remote Buffer Overflow
A buffer overflow vulnerability exists in the WinaXe FTP Client version 7.7 within the FTP banner parsing functionality, WCMDPA10.dll. When the client connects to a remote FTP server and receives an overly long '220 Server Ready' response, the vulnerable component responsible for parsing the bann...
MikroTik RouterOS Detection Consolidation
Consolidation of MikroTik RouterOS detections. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2003-0561
Multiple buffer overflows in IglooFTP PRO 3.8 allow remote FTP servers to execute arbitrary code via 1 a long FTP banner, or long responses to the client commands 2 USER, 3 PASS, 4 ACCT, and possibly other commands...
cftp 0.12 - Banner Parsing Buffer Overflow
cftp 0.12 - Banner Parsing Buffer Overflow source: https://www.securityfocus.com/bid/8160/info A buffer overflow vulnerability has been reported in cftp. The vulnerability occurs when cftp is parsing 'Welcome' banner messages from remote FTP servers. When cftp receives an FTP banner exceeding a...
IglooFTP 0.6.1 - Banner Parsing Buffer Overflow
IglooFTP 0.6.1 - Banner Parsing Buffer Overflow source: https://www.securityfocus.com/bid/8161/info A buffer overflow vulnerability has been reported in IglooFTP. The vulnerability occurs when IglooFTP is parsing 'Welcome' banner messages from remote FTP servers. When IglooFTP receives an FTP...
Multiple Buffer Overflows in IglooFTP PRO
Multiple Buffer Overflows in IglooFTP PRO Url: http://www.iglooftp.com IglooFTP PRO is an extremely powerful, easy to use and well designed FTP client. Perhaps my personal favourite. It is extremely easy to use, but doesn't lack the configurability needed for advanced users. It it this award...
cftp 0.12 - Banner Parsing Buffer Overflow
source: https://www.securityfocus.com/bid/8160/info A buffer overflow vulnerability has been reported in cftp. The vulnerability occurs when cftp is parsing 'Welcome' banner messages from remote FTP servers. When cftp receives an FTP banner exceeding a certain length, it will trigger the overflow...
CVE-2003-0371
Buffer overflow in Prishtina FTP client 1.x allows remote FTP servers to cause a denial of service crash and possibly execute arbitrary code via a long FTP banner...
Prishtina FTP v.1.*: remote DoS
-----BEGIN PGP SIGNED MESSAGE----- Damage Hacking Group security advisory www.dhgroup.org Product: Prishtina FTP v.1. Authors: G.Syla www.prishtina-soft.com Vulnerability: remote DoS Overview------------------------------------------------------ Just ftp client...
CVE-2003-0203
Buffer overflow in moxftp 2.2 and earlier allows remote malicious FTP servers to execute arbitrary code via a long FTP banner...
CVE-2003-0203
Buffer overflow in moxftp 2.2 and earlier allows remote malicious FTP servers to execute arbitrary code via a long FTP banner...
moxftp.txt
I. BACKGROUND According to the vendor moxftp is a "Ftp shell under X Window System". /usr/ports/ftp/moxftp II. DESCRIPTION Insufficient bounds checking leads to execution of arbitrary code. III. ANALYSIS Upon parsing the '220 welcome to server' ftp banner a buffer can be overrun, allowing us to...