14 matches found
EUVD-2004-0675
Malware in sbrugna...
EUVD-2004-0676
Malware in sbrugna...
fastream netfile ftp/web server 6.5/6.7 - Directory Traversal vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/10658/info The NetFile FTP/Web Server is reported prone to a directory traversal vulnerability due to insufficient sanitization of user-supplied data. This can allow an attacker to create, view, and delete arbitrary files...
Fastream NetFile 6.0.3 .588 Error Message Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/8908/info It has been reported that a cross-site scripting vulnerability may exist in NetFile that may allow remote attackers to execute HTML or script code in a user's browser. The issue is reported to occur due to a 404...
CVE-2005-1646
The default installation of Fastream NETFile FTP/Web Server 7.4.6, which supports FXP, does not require that the IP address in a PORT command be the same as the IP of the logged in user, which allows remote attackers to conduct FTP Bounce attacks to bypass firewall rules or cause a denial of...
NETFile FTP/Web Server FTP Bounce Attack
The NETFile FTP/Web server on the remote host is vulnerable to a denial of service attack due to its support of the FXP protocol and its failure to validate the IP address supplied in a PORT command. Additionally, this issue can be leveraged to bypass firewall rules to connect to arbitrary hosts....
NETFile Default Credentials
The version of NETFile FTP/Web server installed on the remote host uses the default admin user and password, root/root. An attacker can exploit this issue to alter the affected application's configuration. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
CVE-2004-1941
The CVE-2004-1941 entry concerns Fastream NETFile FTP/Web Server 6.5.1.980. The vulnerability is described as a remote denial of service that can be triggered by a login attempt using a username that does not exist. Details in connected documents confirm the affected product and the impact as a D...
CVE-2004-0676
Directory traversal vulnerability in Fastream NETFile FTP/Web Server 6.7.2.1085 and earlier allows remote attackers to create or delete arbitrary files via .. dot dot and // double slash sequences in the filename parameter...
CVE-2004-0677
Fastream NETFile FTP Server 6.7.2.1085 and earlier allows remote attackers to cause a denial of service temporary hang via the cd command with an unusual argument, possibly due to multiple leading slashes and/or an access to the floppy drive "A"...
CVE-2004-0676
Directory traversal vulnerability in Fastream NETFile FTP/Web Server 6.7.2.1085 and earlier allows remote attackers to create or delete arbitrary files via .. dot dot and // double slash sequences in the filename parameter...
CVE-2004-0677
CVE-2004-0677 affects Fastream NETFile FTP Server 6.7.2.1085 and earlier. The issue allows remote attackers to cause a denial-of-service (temporary hang) by issuing a cd command with an unusual argument, potentially involving multiple leading slashes or an access to the floppy drive ("A"). The de...
CVE-2004-0677
Fastream NETFile FTP Server 6.7.2.1085 and earlier allows remote attackers to cause a denial of service temporary hang via the cd command with an unusual argument, possibly due to multiple leading slashes and/or an access to the floppy drive "A"...
CVE-2004-1941
Fastream NETFile FTP/Web Server 6.5.1.980 allows remote attackers to cause a denial of service via a username that does not exist...