384 matches found
CVE-2001-0827
Cerberus FTP server 1.0 - 1.5 allows remote attackers to cause a denial of service crash via a large number of "PASV" requests...
CVE-2001-0827
Cerberus FTP server 1.0 - 1.5 allows remote attackers to cause a denial of service crash via a large number of "PASV" requests...
CVE-2001-0827
Cerberus FTP server 1.0 - 1.5 allows remote attackers to cause a denial of service crash via a large number of "PASV" requests...
CVE-2001-0827
Cerberus FTP server versions 1.0–1.5 are affected by a vulnerability that allows remote denial of service (crash) via a high volume of PASV requests. The NVD entry CVE-2001-0827 confirms the issue and impact (availability loss). Several connected sources reference the same description, with PT-20...
PT-2001-1995 · Cerberus · Cerberus Ftp Server
Name of the Vulnerable Software and Affected Versions: Cerberus FTP server versions 1.0 through 1.5 Description: The issue allows remote attackers to cause a denial of service, resulting in a crash, by sending a large number of "PASV" requests. Recommendations: For Cerberus FTP server versions 1....
CVE-2001-0702
Cerberus FTP 1.5 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long 1 username, 2 password, or 3 PASV command...
CVE-2001-0187
Format string vulnerability in wu-ftp 2.6.1 and earlier, when running with debug mode enabled, allows remote attackers to execute arbitrary commands via a malformed argument that is recorded in a PASV port assignment...
CVE-2000-1027
Cisco Secure PIX Firewall 5.22 allows remote attackers to determine the real IP address of a target FTP server by flooding the server with PASV requests, which includes the real IP address in the response when passive mode is established...
Cisco PIX Firewall 5.2 - PASV Mode FTP Internal Address Disclosure
source: https://www.securityfocus.com/bid/1877/info The Cisco PIX is a popular firewall network device. It is possible to configure the PIX so that it hides the IP address of internal ftp servers from clients connecting to it. By sending a number of requests to enter passive ftp mode PASV during ...
fw1-ftp.txt
FireWall-1 FTP Server Vulnerability Background Paper 1, data protect AG John McDonald Thomas Lopatic References ---------- Please reference the recent vuln-dev posting by Mikael Olsson entitled, "Breaking through FTP ALGs -- is it possible?" At the time of this writing, it was not yet archived on...
CVE-1999-0076
Buffer overflow in wu-ftp from PASV command causes a core dump...
CVE-1999-0076
CVE-1999-0076 describes a buffer overflow in wu-ftp triggered by the PASV command, causing a core dump. The connected documents corroborate the description but do not provide explicit affected versions or a fixed patch. The vulnerability affects wu-ftp and results in process termination (core dum...
CVE-1999-0079
CVE-1999-0079 describes a remote denial-of-service condition in FTP where an attacker can exhaust server ports by issuing multiple PASV commands. The vulnerability is documented across NVD/Red Hat/Nessus references with the core impact being port/descriptor exhaustion leading to service disruptio...
CVE-1999-0351
CVE-1999-0351 describes an FTP PASV mode vulnerability (the “Pizza Thief” issue) allowing denial of service and potential data access/wijacking: an attacker can connect to the PASV data port before the intended client and receive data instead. The Red Hat, SGI, and CERT-derived materials in conne...
CVE-1999-0075
PASV core dump in wu-ftpd daemon when attacker uses a QUOTE PASV command after specifying a username and password...
CVE-1999-0075
The CVE-1999-0075 issue affects the wu-ftpd daemon, where handling of a QUOTE PASV command after a username/password can cause a core dump. This vulnerability can lead to an information disclosure (core file containing usernames and passwords) and a forced denial of service via remote triggering ...
CVE-1999-0079
Remote attackers can cause a denial of service in FTP by issuing multiple PASV commands, causing the server to run out of available ports...
CVE-1999-0351
FTP PASV "Pizza Thief" denial of service and unauthorized data access. Attackers can steal data by connecting to a port that was intended for use by a client...
Multiple Vendor FTP Multiple PASV Command Port Exhaustion DoS
The remote FTP server allows users to make any amount of PASV commands, thus blocking the free ports for legitimate services and consuming file descriptors. An unauthenticated attacker could exploit this flaw to crash the FTP service. C Tenable Network Security, Inc. include"compat.inc"; if...
WU-FTPD QUOTE PASV Forced Core Dump Information Disclosure
The remote FTP server fails to handle QUOTE PASV requests for logged in users. An attacker can send a specially crafted requests to cause the service to die and dump core. The core file contains the usernames and passwords of all users. C Tenable Network Security, Inc. include"compat.inc";...