72 matches found
CVE-2006-6949
Conti FTPServer 1.0 Build 2.8 stores user passwords in cleartext in MyServerSettings.ini, which allows local users to obtain sensitive information by reading this file...
CVE-2006-6950
Directory traversal vulnerability in Conti FTPServer 1.0 Build 2.8 allows remote attackers to read arbitrary files and list arbitrary directories via a .. dot dot in a filename argument...
CVE-2006-6949
CVE-2006-6949 affects Conti FTPServer 1.0 Build 2.8, where user passwords are stored in cleartext in MyServerSettings.ini. Local users can read this file to obtain sensitive credentials, enabling partial information disclosure. The vulnerability stems from storing passwords in plaintext in a conf...
CVE-2006-6950
The CVE-2006-6950 entry describes a directory traversal vulnerability in Conti FTPServer 1.0 Build 2.8. The issue allows remote attackers to read arbitrary files and list arbitrary directories by providing a filename containing .. (dot dot). The available sources (NVD/NVD-linked entries) confirm ...
Conti FTP不安全默认帐号及目录遍历漏洞
Conti FtpServer是Windows平台下的多线程FTP服务器。 Conti FTPServer在处理传送给各种命令的参数时存在输入验证错误,允许攻击者通过目录遍历攻击列出并下载FTP根目录以外任意位置的文件。 Conti FTPServer以明文将用户口令存储到了MyServerSettings.ini文件中,因此攻击者可以轻易的检索到口令,获得非授权访问。 Conti FTPServer 1.0 Build 2.8 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...
CVE-2006-1445
Buffer overflow in the FTP server FTPServer in Apple Mac OS X 10.3.9 and 10.4.6 allows remote authenticated users to execute arbitrary code via vectors related to "FTP server path name handling."...
[SA20077] Mac OS X Security Update Fixes Multiple Vulnerabilities
TITLE: Mac OS X Security Update Fixes Multiple Vulnerabilities SECUNIA ADVISORY ID: SA20077 VERIFY ADVISORY: http://secunia.com/advisories/20077/ CRITICAL: Highly critical IMPACT: Security Bypass, Exposure of sensitive information, DoS, System access WHERE: From remote OPERATING SYSTEM: Apple...
wu-ftpd ls -W memory exhaustion
The FTP server does not filter arguments to the ls command. SPDX-FileCopyrightText: 2003 Michel Arboi Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
[NT] sHTTP FTPServer Directory Traversal
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
Small HTTP Server 3.05.28 - Arbitrary Data Execution
Small HTTP Server 3.05.28 - Arbitrary Data Execution !/usr/bin/perl sHTTP FTPServer Abritary Data Execution Exploit -------------------------------------------------- Infam0us Gr0up - Securiti Research E:\PERLperl shttp.pl localhost C:\shttps ? Version: libwww-perl-5.76 + Connect to localhost... ...
secuniaFTP.txt
====================================================================== Secunia Research 26/06/2003 - FTPServer/X Response Buffer Overflow Vulnerability - ====================================================================== Receive Secunia Security Advisories for free:...
[NT] FTPServer/X Response Buffer Overflow Vulnerability
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion Beyond Security in Canada Toronto-based Sunrays Technologies is now Beyond Security's representative in Canada. We welcome ISPs, system...