CVE-2026-41324

basic-ftp is an FTP client for Node.js. Versions prior to 5.3.0 are vulnerable to denial of service through unbounded memory growth while processing directory listings from a remote FTP server. A malicious or compromised server can send an extremely large or never-ending listing response to...

EUVD-2018-10101

Malware in sbrugna...

CVE-2018-18371

The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser. An information disclosure vulnerability in the WebFTP mode allows a malicious user to obtain plaintext authentication credentials for a remote FTP serve...

Xxe

An XML External Entity injection XXE vulnerability exists in Zoho ManageEngine Network Configuration Manager and OpManager before 12.3.214 via the RequestXML parameter in a /devices/ProcessRequest.do GET request. For example, the attacker can trigger the transmission of local files to an arbitrar...

CVE-2018-7573

Summary (CVE-2018-7573) : The FTPShell Client v6.7 contains a stack-based buffer overflow triggered by a remote FTP server sending 400 consecutive 'F' characters in combination with an FTP 220 response. This overflow enables arbitrary code execution on the victim machine. Related advisories and e...

FTPShell Client 5.24 Buffer Overflow

++++++++++++++++++++++++ + Exploit Title: FTPShell Client Add New Folder Local Buffer Overflow + Date: 2/2/2016 +Exploit Author: Arash Khazaei + Vendor Homepage: www.ftpshell.com +Software Link: http://www.ftpshell.com/download.htm + Version: 5.24 + Tested on: Windows XP Professional SP3 Version...

FTPShell Client 5.24 - (Create NewFolder) Local Buffer Overflow

Exploit for windows platform in category local exploits ++++++++++++++++++++++++ + Exploit Title: FTPShell Client Add New Folder Local Buffer Overflow + Date: 2/2/2016 +Exploit Author: Arash Khazaei + Vendor Homepage: www.ftpshell.com +Software Link: http://www.ftpshell.com/download.htm + Version...

Konica Minolta FTP Utility 1.0 - Remote Denial of Service (PoC)

Konica Minolta FTP Utility 1.0 - Remote Denial of Service PoC !/usr/bin/python Exploit Title: Konica Minolta FTP Utility 1.0 Remote DoS PoC Date: 21-08-2015 Exploit Author: Shankar Damodaran Vendor Homepage: http://www.konicaminolta.com/ Software Link:...

Jildi FTP Client 1.5.2 Build 1138 Buffer Overflow Exploit

Jildi FTP Client version 1.5.2 build 1138 suffers from a buffer overflow vulnerability. !/usr/bin/python Exploit Title:Jildi FTP Client Buffer Overflow Poc Version:1.5.2 Build 1138 Homepage:http://de.download.cnet.com/Jildi-FTP-Client/3000-21604-10562942.html Software...

CVE-2014-5211

Stack-based buffer overflow in the Attachmate Reflection FTP Client before 14.1.433 allows remote FTP servers to execute arbitrary code via a large PWD response...

Core FTP Server 1.2 Build 535 Denial Of Service

!/usr/bin/python import socket,sys,time def Usage: print "Core FTP Server Version 1.2, build 535, 32-bit - Crash P.O.C." print "Usage: ./coreftpdos.py " print "Ex: ./coreftpdos.py 192.168.10.10 21 ftp ftp\n" if lensys.argv 5: Usage sys.exit1 else: host=sys.argv1 port=sys.argv2 user=sys.argv3...

Directory traversal

Directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 allows remote FTP servers to create or overwrite arbitrary files via a .. dot dot in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder...

Easy File Sharing FTP Server PASS Command Overflow

The remote host appears to be using Easy File Sharing FTP Server, an FTP server for Windows. The version of Easy File Sharing FTP Server installed on the remote host contains a stack-based buffer overflow vulnerability that can be exploited by an unauthenticated attacker with a specially crafted...

GNU InetUtils ftpd 1.4.2 - 'ld.so.preload' Remote Code Execution

FTP server GNU inetutils 1.4.2 Remote Root Exploit This program remotely exploits the most recent versions of GNU inetutils ftpd on linux systems. Requirements: 1. There MUST be a chroot'ed environment for the logged in user 2. Directory etc must be writeable by the logged in user duh! The exploi...

XM Easy FTP Server USER Command Buffer Overflow

The remote host appears to be using XM Easy FTP Server, a personal FTP server for Windows. The version of XM Easy FTP Server installed on the remote host contains a buffer overflow vulnerability that can be exploited by an unauthenticated user with a specially crafted USER command to crash the...

ProFTPD Login Timing Account Name Enumeration

The remote ProFTPd server is as old or older than 1.2.10 It is possible to determine which user names are valid on the remote host based on timing analysis attack of the login procedure. An attacker may use this flaw to set up a list of valid usernames for a more efficient brute-force attack...

CVE-2002-1344

Directory traversal vulnerability in wget before 1.8.2-4 allows a remote FTP server to create or overwrite files as the wget user via filenames containing 1 /absolute/path or 2 .. dot dot sequences...

3Com NBX ftpd CEL Command Remote Overflow (2)

The remote FTP server appears to be affected by a buffer overflow that can be triggered with an overly-long 'CEL' command. This problem is similar to the 'aix ftpd' overflow but on embedded VxWorks-based systems like the 3Com NBX IP phone call manager and seems to cause the server to crash. It is...

MPEi/X Default FTP Accounts

The remote FTP server has one or more accounts with a blank password. This script was written by H D Moore See the Nessus Scripts License for details Changes by Tenable: - Revised plugin title, changed family 11/04/10 include"compat.inc"; ifdescription scriptid11000; scriptversion "1.22";...

Dragon FTP USER Command Remote Overflow

It was possible to crash the remote FTP server by issuing a USER command followed by a very long argument over 16,000 characters. This is likely due to a remote buffer overflow vulnerability. A remote attacker could exploit this to crash the server, or possibly execute arbitrary code. C Tenable...