53 matches found
CVE-2020-7564
A CWE-120: Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules see notification for details which could cause write access and the execution o...
EUVD-1999-0978
Malware in sbrugna...
EUVD-2003-1586
Malware in sbrugna...
EUVD-2002-0139
Malware in sbrugna...
EUVD-2004-1884
Malware in sbrugna...
EUVD-1999-0083
Malware in sbrugna...
EUVD-2009-3152
Malware in sbrugna...
EUVD-2007-6439
Malware in sbrugna...
EUVD-2000-0213
Malware in sbrugna...
EUVD-2018-9518
Malware in sbrugna...
EUVD-2022-51007
Malicious code in bioql PyPI...
EUVD-2021-7620
Malicious code in bioql PyPI...
CVE-2025-44654
In Linksys E2500 3.0.04.002, the chrootlocaluser option is enabled in the vsftpd configuration file. This could lead to unauthorized access to system files, privilege escalation, or use of the compromised server as a pivot point for internal network attacks...
Alibaba Cloud Linux 3 : 0155: curl (ALINUX3-SA-2022:0155)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0155 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-32206: curl 7.84.0 supports chain...
OESA-2023-1882 apache-commons-net security update
Apache Commons Net library contains a collection of network utilities and protocol implementations. Supported protocols include: Echo, Finger, FTP, NNTP, NTP, POP3S, SMTPS, Telnet, Whois Security Fixes: Prior to Apache Commons Net 3.9.0, Net's FTP client trusts the host from PASV response by...
Amazon Linux 2022 : curl, curl-minimal, libcurl (ALAS2022-2022-206)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-206 advisory. A vulnerability was found in curl. This issue occurs because a malicious server can serve excessive amounts of Set-Cookie: headers in an HTTP response to curl, which stores all of them. This fl...
SUSE-SU-2021:1433-1 Security update for MozillaFirefox
This update for MozillaFirefox fixes the following issues: - MozillaFirefox was updated to 78.10.0 ESR bsc1184960 CVE-2021-23994: Out of bound write due to lazy initialization CVE-2021-23995: Use-after-free in Responsive Design Mode CVE-2021-23998: Secure Lock icon could have been spoofed...
Fix of CVE: CVE-2020-8284
trusting FTP PASV responses CVE-2020-8284...
Analysing the Attack Surface of an Industrial Data Acquisition Device
Introduction The Data Station Plus from Red Lion Controls was handed to me to analyse the attack surface. The device is designed to connect to SCADA data acquisition devices over Modbus, Profibus, etc. by Serial or Ethernet connection. Data is collected and recorded to a local compact flash card...
FTP2FTP 1.0 - Arbitrary File Download
FTP2FTP 1.0 - Arbitrary File Download Exploit Title: FTP2FTP 1.0 - Arbitrary File Download Dork: N/A Date: 18.07.2018 Exploit Author: Özkan Mustafa Akkuş AkkuS Vendor Homepage: https://codecanyon.net/item/ftp2ftp-server-to-server-file-transfer-php-script/21972395 Version: 1.0 Category: Webapps...