CVE-2019-25654 Core FTP/SFTP Server 1.2 Denial of Service via Buffer Overflow

Core FTP/SFTP Server 1.2 contains a buffer overflow vulnerability that allows attackers to crash the service by supplying an excessively long string in the User domain field. Attackers can paste a malicious payload containing 7000 bytes of data into the domain configuration to trigger an...

Core FTP/SFTP Server 缓冲区错误漏洞

Core FTP/SFTP Server is a file transfer server software developed by Core FTP Corporation. Version 1.2 of Core FTP/SFTP Server contains a buffer error vulnerability. This vulnerability stems from a buffer overflow in the user domain field, which could allow attackers to cause the service to crash...

EUVD-2022-28033

Malicious code in bioql PyPI...

Remote Code Execution in extension "Turn!" (turn)

The extensions fails to sanitize user input resulting in Remote Code Execution. The issue is only exploitable, when the attacker has FTP/SFTP access to the TYPO3 website...

Updated proftpd packages fix security vulnerabilities

Updated proftpd package fixes security vulnerabilities: It was discovered that the modcopy module of ProFTPD, a FTP/SFTP/FTPS server, performed incomplete permission validation for the CPFR/CPTO commands CVE-2019-12815. It was discovered that due to incorrect handling of overly long commands, a...

i-FTP 2.20 - Local Buffer Overflow (SEH)

i-FTP 2.20 - Local Buffer Overflow SEH !/usr/bin/python Exploit Title:i-FTP Buffer Overflow SEH Homepage:http://www.memecode.com/iftp.php Software Link:www.memecode.com/data/iftp-win32-v220.exe Version:i.Ftp v2.20 Win32 Release Vulnerability discovered:26.10.2014 Description:Simple portable cross...

[SECURITY] Fedora 20 Update: gvfs-1.18.3-3.fc20

The gvfs package provides backend implementations for the gio framework in GLib. It includes ftp, sftp, cifs...

FTPGetter 3.58.0.21 - Buffer Overflow (PASV) Exploit

No description provided by source. !/usr/bin/python Exploit Title: FTPGetter v3.58.0.21 Buffer Overflow PASV Exploit Date: 02/03/2011 Author: modpr0be Software Link: http://www.ftpgetter.com/ftpgettersetup.exe Vulnerable version: = 3.58.0.21 Tested on: Windows XP SP3 VMware Player 3.1.3...

UltraEdit 14.00b - FTP/SFTP 'LIST' Command Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/29784/info UltraEdit is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. This issue occurs in the FTP/SFTP client. Exploiting this issue will allow a...

Debian DSA-2767-1 : proftpd-dfsg - denial of service

Kingcope discovered that the modsftp and modsftppam modules of proftpd, a powerful modular FTP/SFTP/FTPS server, are not properly validating input, before making pool allocations. An attacker can use this flaw to conduct denial of service attacks against the system running proftpd resource...

FreeFTPD 'SFTP'身份验证机制绕过漏洞

BUGTRAQ ID: 56782 FreeFTPd是一款基于WeOnlyDo FTP/SFTP实现的免费FTP+SSL/SFTP服务器。 FreeFTPD 1.0.11及其他版本的SFTP身份验证机制存在错误，可被利用绕过身份验证进程，以服务权限执行任意代码。 0 freeFTPd 1.x 临时解决方法： 如果您不能立刻安装补丁或者升级，建议您采取以下措施以降低威胁： 暂停使用freeFTPd。 厂商补丁： freeFTPd -------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://freeftpd.com/...

UltraEdit FTP/SFTP LIST命令目录遍历漏洞

BUGTRAQ ID: 29784 UltraEdit是HTML、HEX文本和PHP、Perl等编程语言的多用途编辑器。 UltraEdit内置的FTP/SFTP浏览器没有正确地过滤FTP服务器响应LIST命令所返回文件名中的斜线和反斜线。如果用户受骗从服务器下载了整个目录的话，就可能导致向用户机器上的任意位置写入文件。 IDM Computer Solutions UltraEdit 14.00b IDM Computer Solutions ---------------------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

UltraEdit 14.00b - FTP/SFTP 'LIST' Directory Traversal

source: https://www.securityfocus.com/bid/29784/info UltraEdit is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. This issue occurs in the FTP/SFTP client. Exploiting this issue will allow an attacker to write arbitrary file...

freeFTPd 1.0.10 (Dos,Exploit)

Author: Stefan Lochbihler Date: 24. November 2005 Software: freeFTPd Version: 1.0.10 URL: http://freeftpd.com/ Attack: Denial of service about: freeFTPd is a FTP/FTPS/SFTP server that enables user to access remote files over TCP/IP network such as Internet. Unlike FTP, FTPS and SFTP protocols...