CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2004-0447

Malware in sbrugna...

10CVSS6.1AI score0.02459EPSS

Exploits0References5

Tenable Nessus•added 2009/04/23 12:0 a.m.•29 views

FreeBSD : Arbitrary code execution via a format string vulnerability in jftpgw (65a17a3f-ed6e-11d8-aff1-00061bc2ad93)

The log functions in jftpgw may allow remotely authenticated user to execute arbitrary code via the format string specifiers in certain syslog messages. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXM...

10CVSS5.7AI score0.02459EPSS

Exploits0References3

OpenVAS•added 2008/09/04 12:0 a.m.•17 views

FreeBSD Ports: jftpgw

The remote host is missing an update to the system as announced in the referenced advisory. VID 65a17a3f-ed6e-11d8-aff1-00061bc2ad93 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

10CVSS0.4AI score0.02459EPSS

Exploits0

OpenVAS•added 2008/09/04 12:0 a.m.•16 views

FreeBSD Ports: jftpgw

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS6.7AI score0.02459EPSS

Exploits0References4

OpenVAS•added 2008/01/17 12:0 a.m.•27 views

Debian Security Advisory DSA 510-1 (jftpgw)

The remote host is missing an update to jftpgw announced via advisory DSA 510-1. OpenVAS Vulnerability Test $Id: deb5101.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 510-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

10CVSS1.1AI score0.02459EPSS

Exploits0

OpenVAS•added 2008/01/17 12:0 a.m.•11 views

Debian: Security Advisory (DSA-510)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.8AI score0.02459EPSS

Exploits0References3

NVD•added 2004/12/06 5:0 a.m.•5 views

CVE-2004-0448

Format string vulnerability in the log function for jftpgw 0.13.4 and earlier allows remote authenticated users to execute arbitrary code via format string specifiers in certain syslog messages...

10CVSS7.2AI score0.02459EPSS

Exploits0References3

Tenable Nessus•added 2004/09/29 12:0 a.m.•27 views

Debian DSA-510-1 : jftpgw - format string

[email protected] discovered a vulnerability in jftpgw, an FTP proxy program, whereby a remote user could potentially cause arbitrary code to be executed with the privileges of the jftpgw server process. By default, the server runs as user 'nobody'. CAN-2004-0448: format string vulnerabilit...

10CVSS5.5AI score0.02459EPSS

Exploits0References2

Tenable Nessus•added 2004/08/13 12:0 a.m.•16 views

FreeBSD : Arbitrary code execution via a format string vulnerability in jftpgw (82)

The following package needs to be updated: jftpgw %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg65a17a3fed6e11d8aff100061bc2ad93.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML : Copyright...

6.4AI score0.02459EPSS

Exploits0References15

CVE•added 2004/07/08 4:0 a.m.•58 views

CVE-2004-0448

The CVE-2004-0448 entry describes a format-string vulnerability in the log function of jftpgw 0.13.4 and earlier. The flaw allows remote authenticated users to execute arbitrary code via format string specifiers in certain syslog messages. Documents confirm affected software (jftpgw, an FTP proxy...

10CVSS7.1AI score0.02459EPSS

Exploits0References3Affected Software1

Cvelist•added 2004/07/08 4:0 a.m.•16 views

CVE-2004-0448

Format string vulnerability in the log function for jftpgw 0.13.4 and earlier allows remote authenticated users to execute arbitrary code via format string specifiers in certain syslog messages...

7.1AI score0.02459EPSS

Exploits0References3

securityvulns•added 2004/05/31 12:0 a.m.•27 views

jftpgw format string buffer overflow

syslog format string bug...

2.8AI score

Exploits0References1Affected Software1

securityvulns•added 2004/05/31 12:0 a.m.•31 views

[SECURITY] [DSA 510-1] New jftpgw packages fix format string vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - -------------------------------------------------------------------------- Debian Security Advisory DSA 510-1 [email protected] http://www.debian.org/security/ Matt Zimmerman May 29th, 2004 http://www.debian.org/security/faq -...

10CVSS0.5AI score0.02459EPSS

Exploits0

FreeBSD•added 2004/05/30 12:0 a.m.•18 views

Arbitrary code execution via a format string vulnerability in jftpgw

The log functions in jftpgw may allow remotely authenticated user to execute arbitrary code via the format string specifiers in certain syslog messages...

10CVSS6.9AI score0.02459EPSS

Exploits0References2

Debian•added 2004/05/29 8:58 p.m.•16 views

[SECURITY] [DSA 510-1] New jftpgw packages fix format string vulnerability

-------------------------------------------------------------------------- Debian Security Advisory DSA 510-1 [email protected] http://www.debian.org/security/ Matt Zimmerman May 29th, 2004 http://www.debian.org/security/faq -...

10CVSS6.1AI score0.02459EPSS

Exploits0