Lucene search
K

51 matches found

OSV
OSV
added 2022/12/22 8:3 p.m.20 views

GHSA-6MV3-WM7J-H4W5 Tauri Filesystem Scope Glob Pattern is too Permissive

Impact The filesystem glob pattern wildcards , ?, and ... match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Example: The fs scope $HOME/.key would also allow $HOME/.ssh/secret.key to be read even though it is in a sub director...

6.8CVSS6.8AI score0.01006EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2022/12/22 8:3 p.m.82 views

Tauri Filesystem Scope Glob Pattern is too Permissive

Impact The filesystem glob pattern wildcards , ?, and ... match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Example: The fs scope $HOME/.key would also allow $HOME/.ssh/secret.key to be read even though it is in a sub director...

7.7CVSS7.1AI score0.01006EPSS
Exploits1References6Affected Software1
RedHat Linux
RedHat Linux
added 2016/08/09 10:4 a.m.5 views

nodejs-minimatch: Regular expression denial-of-service

A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...

5.8AI score
Exploits0References5
RedhatCVE
RedhatCVE
added 2016/07/12 3:18 p.m.28 views

CVE-2016-1000023

A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...

3.6AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2015/10/30 10:13 a.m.20 views

CVE-2005-0256

The wufnmatch function in wufnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service CPU exhaustion by recursion via a glob pattern with a large number of wildcard characters, as demonstrated using the dir command...

5CVSS7.2AI score0.05208EPSS
Exploits1References2
Check Point Advisories
Check Point Advisories
added 2014/02/03 12:0 a.m.5 views

WU-FTPD File Globbing Denial Of Service - Ver2 (CVE-2005-0256)

A denial-of-service vulnerability has been reported in wu-ftpd. A remote attacker could trigger this vulnerability via a glob pattern with a large number of wildcard characters as demonstrated using the dir command. Successful exploitation of this vulnerability would allow a remote attacker to...

6.1AI score0.05208EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2014/01/07 12:0 a.m.4 views

WU-FTPD File Globbing Denial Of Service - Ver2 (CVE-2005-0256)

A denial-of-service vulnerability has been reported in wu-ftpd. A remote attacker could trigger this vulnerability via a glob pattern with a large number of wildcard characters as demonstrated using the dir command. Successful exploitation of this vulnerability would allow a remote attacker to...

5CVSS6.1AI score0.05208EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2011/03/15 12:0 a.m.71 views

Fedora 14 : vsftpd-2.3.4-1.fc14 (2011-2590)

Thu Mar 3 2011 Jiri Skala - 2.3.4-1 - update to latest upstream 2.3.4 - fixes 681935 - CVE-2011-0762 vsftpd: remote DoS via crafted glob pattern Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

4CVSS6.4AI score0.7332EPSS
Exploits9References3
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.24 views

FreeBSD Ports: wu-ftpd

The remote host is missing an update to the system as announced in the referenced advisory. VID ef410571-a541-11d9-a788-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

5CVSS6.3AI score0.05208EPSS
Exploits1
NVD
NVD
added 2005/05/02 4:0 a.m.13 views

CVE-2005-0256

The wufnmatch function in wufnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service CPU exhaustion by recursion via a glob pattern with a large number of wildcard characters, as demonstrated using the dir command...

5CVSS6.2AI score0.05208EPSS
Exploits1References15
UbuntuCve
UbuntuCve
added 2005/05/02 4:0 a.m.26 views

CVE-2005-0256

The wufnmatch function in wufnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service CPU exhaustion by recursion via a glob pattern with a large number of wildcard characters, as demonstrated using the dir command...

5CVSS5.9AI score0.05208EPSS
Exploits1References1
Rows per page
Query Builder