51 matches found
GHSA-6MV3-WM7J-H4W5 Tauri Filesystem Scope Glob Pattern is too Permissive
Impact The filesystem glob pattern wildcards , ?, and ... match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Example: The fs scope $HOME/.key would also allow $HOME/.ssh/secret.key to be read even though it is in a sub director...
Tauri Filesystem Scope Glob Pattern is too Permissive
Impact The filesystem glob pattern wildcards , ?, and ... match file path literals and leading dots by default, which unintentionally exposes sub folder content of allowed paths. Example: The fs scope $HOME/.key would also allow $HOME/.ssh/secret.key to be read even though it is in a sub director...
nodejs-minimatch: Regular expression denial-of-service
A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...
CVE-2016-1000023
A regular expression denial of service flaw was found in Minimatch. An attacker able to make an application using Minimatch to perform matching using a specially crafted glob pattern could cause the application to consume an excessive amount of CPU...
CVE-2005-0256
The wufnmatch function in wufnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service CPU exhaustion by recursion via a glob pattern with a large number of wildcard characters, as demonstrated using the dir command...
WU-FTPD File Globbing Denial Of Service - Ver2 (CVE-2005-0256)
A denial-of-service vulnerability has been reported in wu-ftpd. A remote attacker could trigger this vulnerability via a glob pattern with a large number of wildcard characters as demonstrated using the dir command. Successful exploitation of this vulnerability would allow a remote attacker to...
WU-FTPD File Globbing Denial Of Service - Ver2 (CVE-2005-0256)
A denial-of-service vulnerability has been reported in wu-ftpd. A remote attacker could trigger this vulnerability via a glob pattern with a large number of wildcard characters as demonstrated using the dir command. Successful exploitation of this vulnerability would allow a remote attacker to...
Fedora 14 : vsftpd-2.3.4-1.fc14 (2011-2590)
Thu Mar 3 2011 Jiri Skala - 2.3.4-1 - update to latest upstream 2.3.4 - fixes 681935 - CVE-2011-0762 vsftpd: remote DoS via crafted glob pattern Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...
FreeBSD Ports: wu-ftpd
The remote host is missing an update to the system as announced in the referenced advisory. VID ef410571-a541-11d9-a788-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
CVE-2005-0256
The wufnmatch function in wufnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service CPU exhaustion by recursion via a glob pattern with a large number of wildcard characters, as demonstrated using the dir command...
CVE-2005-0256
The wufnmatch function in wufnmatch.c in wu-ftpd 2.6.1 and 2.6.2 allows remote attackers to cause a denial of service CPU exhaustion by recursion via a glob pattern with a large number of wildcard characters, as demonstrated using the dir command...