6 matches found
EUVD-2004-0675
Malware in sbrugna...
CVE-2005-1646
The default installation of Fastream NETFile FTP/Web Server 7.4.6, which supports FXP, does not require that the IP address in a PORT command be the same as the IP of the logged in user, which allows remote attackers to conduct FTP Bounce attacks to bypass firewall rules or cause a denial of...
NETFile FTP/Web Server FTP Bounce Attack
The NETFile FTP/Web server on the remote host is vulnerable to a denial of service attack due to its support of the FXP protocol and its failure to validate the IP address supplied in a PORT command. Additionally, this issue can be leveraged to bypass firewall rules to connect to arbitrary hosts....
NETFile Default Credentials
The version of NETFile FTP/Web server installed on the remote host uses the default admin user and password, root/root. An attacker can exploit this issue to alter the affected application's configuration. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc';...
CVE-2004-0676
Directory traversal vulnerability in Fastream NETFile FTP/Web Server 6.7.2.1085 and earlier allows remote attackers to create or delete arbitrary files via .. dot dot and // double slash sequences in the filename parameter...
CVE-2004-1941
Fastream NETFile FTP/Web Server 6.5.1.980 allows remote attackers to cause a denial of service via a username that does not exist...