[SECURITY] Fedora 43 Update: squid-7.5-1.fc43

Squid is a high-performance proxy caching server for Web clients, supporting FTP and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups...

openSUSE: Security Advisory for curl (SUSE-SU-2022:2327-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Low: curl security update

The curl packages provide the libcurl library and the curl utility for downloading files from servers using various protocols, including HTTP, FTP, and LDAP. Security Fixes: curl: Incorrect handling of control code characters in cookies CVE-2022-35252 curl: Use-after-free triggered by an HTTP pro...

BitComet Service for Windows Elevation of Privilege Vulnerability

BitComet is a BitTorrent client software written in C for the Microsoft Windows platform, which can also be used for HTTP/FTP downloads.An elevation of privilege vulnerability exists in BitComet Service for Windows, which can be exploited by attackers to elevate privileges to the system level...

EulerOS Virtualization for ARM 64 3.0.2.0 : libxml2 (EulerOS-SA-2019-1614)

According to the versions of the libxml2 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There ...

Debian DSA-4259-1 : ruby2.3 - security update

Several vulnerabilities have been discovered in the interpreter for the Ruby language, which may result in incorrect processing of HTTP/FTP, directory traversal, command injection, unintended socket creation or information disclosure. This update also fixes several issues in RubyGems which could...

[SECURITY] [DSA 4259-1] ruby2.3 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4259-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 31, 2018 https://www.debian.org/security/faq -...

Debian: Security Advisory (DSA-4259-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DLA-1121-1 : curl security update

It was discovered that there was a out-of-bounds read vulnerability in curl, a command-line and library for transferring data over HTTP/FTP, etc. A malicious FTP server could abuse this to prevent curl-based clients from interacting with it. See for more details. For Debian 7 'Wheezy', this issue...

Moderate: Red Hat Security Advisory: curl security, bug fix, and enhancement update

An update for curl is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

XML External Entity (XXE) Processing

camunda-xml-model is vulnerable to XML external entity XXE processing attacks. The library does not set the expandEntityReferences property of the DocumentBuilderFactory to false by default. This can allow an attacker to gain access to the system's filesystem or execute HTTP and FTP requests...

[SECURITY] Fedora 26 Update: wget-1.19.1-3.fc26

GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest wit...

SPIP 3.1.2 Server Side Request Forgery Vulnerability

Exploit for php platform in category web applications SPIP 3.1.2 Server Side Request Forgery CVE-2016-7999 Product Description SPIP is a publishing system for the Internet, which put importance on collaborative working, multilingual environments and ease of use. It is free software, distributed...

Kukol E.V. HTTP & FTP Server Suite 6.2 File Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8564/info The web server component of Kukol E.V. HTTP & FTP Server Suite is prone to a file disclosure vulnerability. Remote web users may use directory traversal sequences in requests to gain access to files outside of t...

Orenosv HTTP/FTP Server 0.5.9 HTTP GET Denial of Service Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is reported that both t...

Orenosv HTTP/FTP Server 0.5.9 HTTP GET Denial of Service Vulnerability (3)

No description provided by source. source: http://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is reported that both t...

Orenosv HTTP/FTP Server 0.8.1 FTP Commands Remote Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13546/info The FTP server shipped with Orenosv HTTP/FTP is prone to a remote buffer-overflow vulnerability. This issue presents itself when the application handles excessive values supplied as filenames through various FT...

Orenosv HTTP/FTP Server 0.5.9 HTTP GET Denial of Service Vulnerability (1)

No description provided by source. source: http://www.securityfocus.com/bid/10420/info Orenosv HTTP/FTP server is prone to a denial of service vulnerability that may occur when an overly long HTTP GET request is sent to the server. When the malicious request is handled, it is reported that both t...

Wireless Disk PRO v2.3 iPad iPhone - Multiple Vulnerabilities

Document Title: =============== Wireless Disk PRO v2.3 iPad iPhone - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=883 Release Date: ============= 2013-02-25 Vulnerability Laboratory ID VL-ID: ==================================...

Femitter FTP Server 1.04 - Directory Traversal

Femitter FTP Server 1.04 - Directory Traversal Exploit Title: Fermitter Server FTP Directory Traversal Date: Nov 06, 2010 Author: chr1x Software Link: http://acritum.com/software/dist/fem-dist.exe Description: Acritum Femitter HTTP-FTP Server is an easy-to use HTTP and FTP server application for...