Astra Linux - уязвимость в libcommons-net-java

Prior to Apache Commons Net 3.9.0, Net’s FTP client trusted the host based on the PASV response by default. A malicious server could redirect the Commons Net code to use a different host, but the user had to connect to the malicious server in the first place. This could result in the leakage of...

USN-6037-1: Apache Commons Net vulnerability

ZeddYu Lu discovered that the FTP client from Apache Commons Net trusted the host from PASV responses by default. A remote attacker with a malicious FTP server could redirect the client to another server, which could possibly result in leaked information about services running on the private...

Ubuntu: Security Advisory (USN-6037-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian dla-3251 : libcommons-net-java - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3251 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3251-1 [email protected] https://www.debian.org/lts/security/...

Debian: Security Advisory (DLA-3251-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-5307-1 : libcommons-net-java - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5307 advisory. ZeddYu Lu discovered that the FTP client of Apache Commons Net, a Java client API for basic Internet protocols, trusts the host from PASV response by default. A malicious...

Debian: Security Advisory (DSA-5307-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 5307-1] libcommons-net-java security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5307-1 [email protected] https://www.debian.org/security/ Markus Koschany December 29, 2022 https://www.debian.org/security/faq -...

[SECURITY] [DLA 3251-1] libcommons-net-java security update

Debian LTS Advisory DLA-3251-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany December 29, 2022 https://wiki.debian.org/LTS Package : libcommons-net-java Version : 3.6-1+deb10u1 CVE ID : CVE-2021-37533 Debian Bug : 1025910 ZeddYu Lu discovered that the FTP client...

DLA-3251-1 libcommons-net-java - security update

Bulletin has no description...

DSA-5307-1 libcommons-net-java - security update

Bulletin has no description...