32 matches found
Attachmate Reflection FTP Client PWD Command Buffer Overflow (CVE-2014-5211)
A stack-based buffer overflow vulnerability exists in Attachmate Reflection FTP Client. The vulnerability is caused by insufficient boundary checking while processing PWD command responses. An attacker could exploit this vulnerability by enticing a user to access an FTP server that sends speciall...
Attachmate Reflection FTP Client Stack Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Attachmate Reflection FTP client. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw manifests whi...
FTPShell 5.1 Stack Buffer Overflow
No description provided by source. $Id: ftpshell51pwdreply.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...
FTPGetter Standard 3.55.0.05 - Stack Buffer Overflow (PWD)
No description provided by source. $Id: ftpgetterpwdreply.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms ...
CrushFTP HTTP Server Stack Buffer Overflow (PWD)
Exploit for windows platform in category remote exploits $Id: CrushFTPHTTPServer.rb 11039 2010-11-14 19:03:24Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information ...
FTPShell 5.1 Stack Buffer Overflow
$Id: ftpshell51pwdreply.rb 10660 2010-10-12 18:39:21Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Format string
Multiple format string vulnerabilities in the tolog function in httpdx 1.4, 1.4.5, 1.4.6, 1.4.6b, and 1.5 allow 1 remote attackers to execute arbitrary code via format string specifiers in a GET request to the HTTP server component when logging is enabled, and allow 2 remote authenticated users t...
CVE-2008-4321
Buffer overflow in FlashGet formerly JetCar FTP 1.9 allows remote FTP servers to execute arbitrary code via a long response to the PWD command...
CVE-2007-0825
FlashFXP 3.4.0 build 1145 allows remote servers to cause a denial of service CPU consumption via a response to a PWD command that contains a long string with deeply nested directory structure, possibly due to a buffer overflow...
CVE-2005-0746
The Mini FTP server in Novell iChain 2.2 and 2.3 SP2 and earlier allows remote unauthenticated attackers to obtain the full path of the server via the PWD command...
CVE-2003-1319
Multiple buffer overflows in SmartFTP 1.0.973, and other versions before 1.0.976, allow remote attackers to execute arbitrary code via 1 a long response to a PWD command, which triggers a stack-based overflow, and 2 a long line in a response to a file LIST command, which triggers a heap-based...
CVE-2001-0934
Cooolsoft PowerFTP Server 2.03 allows remote attackers to obtain the physical path of the server root via the pwd command, which lists the full pathname...