196 matches found
CVE-2012-10060
Sysax Multi Server before 5.55 is vulnerable to a stack-based buffer overflow in its SSH service when a remote attacker supplies an overly long username during authentication. The input is copied into a fixed-size stack buffer without proper bounds checking, enabling remote code execution under t...
CVE-2012-10060 Sysax Multi Server < 5.55 SSH Username Buffer Overflow
Sysax Multi Server versions prior to 5.55 contain a stack-based buffer overflow in its SSH service. When a remote attacker supplies an overly long username during authentication, the server copies the input to a fixed-size stack buffer without proper bounds checking. This allows remote code...
CVE-2012-10060
Sysax Multi Server versions prior to 5.55 contain a stack-based buffer overflow in its SSH service. When a remote attacker supplies an overly long username during authentication, the server copies the input to a fixed-size stack buffer without proper bounds checking. This allows remote code...
PT-2025-33095
Name of the Vulnerable Software and Affected Versions: Sysax Multi Server versions prior to 5.55 Description: Sysax Multi Server versions prior to 5.55 contain a stack-based buffer overflow in its SSH service. When a remote attacker provides an overly long username during authentication, the serv...
Codeorigin Sysax Multi Server 安全漏洞
Codeorigin Sysax Multi Server is an FTP File Transfer Protocol server and Shell server for Windows from Codeorigin USA. A security vulnerability exists in Codeorigin Sysax Multi Server versions prior to 5.55, which stems from a stack buffer overflow in the SSH service's handling of usernames, whi...
CVE-2013-10065
A denial-of-service vulnerability exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in loss of availability. The flaw is triggered during the handling of malformed key exchange data, including a...
CVE-2013-10065
A denial-of-service vulnerability exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in loss of availability. The flaw is triggered during the handling of malformed key exchange data, including a...
CVE-2013-10065
CVE-2013-10065 affects Sysax Multi-Server 6.10 SSHD. A specially crafted SSH key exchange packet can crash the service, causing denial of service. The flaw is triggered by malformed key exchange data, including a non‑standard byte (0x28) replacing the SSH protocol delimiter. Multiple sources (NVD...
CVE-2013-10065 Sysax Multi-Server <= 6.10 SSHD Key Exchange DoS
A denial-of-service vulnerability exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in loss of availability. The flaw is triggered during the handling of malformed key exchange data, including a...
CVE-2013-10065 Sysax Multi-Server <= 6.10 SSHD Key Exchange DoS
A denial-of-service vulnerability exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in loss of availability. The flaw is triggered during the handling of malformed key exchange data, including a...
Codeorigin Sysax Multi Server 安全漏洞
Codeorigin Sysax Multi Server is an FTP File Transfer Protocol server and Shell server for Windows from Codeorigin USA. A security vulnerability exists in Codeorigin Sysax Multi Server version 6.10 that stems from not properly handling SSH key exchange data, which could result in a denial of...
PT-2025-31989 · Unknown · Sysax Multi Server
Name of the Vulnerable Software and Affected Versions: Sysax Multi-Server version 6.10 Description: A denial-of-service issue exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in a loss of...
CVE-2024-53459
Sysax Multi Server 6.99 is vulnerable to Cross Site Scripting XSS via the /scgi?sid parameter...
CVE-2020-23574
When uploading a file in Sysax Multi Server 6.90, an authenticated user can modify the filename="" parameter in the uploadfilename1.htm form to a length of 368 or more bytes. This will create a buffer overflow condition, causing the application to crash...
CVE-2020-13227
An issue was discovered in Sysax Multi Server 6.90. An attacker can determine the username under which the web server is running by triggering an invalid path permission error. This bypasses the fakepath protection mechanism...
CVE-2012-6530
Stack-based buffer overflow in Sysax Multi Server before 5.52, when HTTP is enabled, allows remote authenticated users with the create folder permission to execute arbitrary code via a crafted request...
CVE-2009-4790
Multiple directory traversal vulnerabilities in Sysax Multi Server 4.5 allow remote authenticated users to read or modify arbitrary files via crafted FTP commands. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2024-53458
Sysax Multi Server 6.99 is vulnerable to a denial of service DoS condition when processing specially crafted SSH packets...
CVE-2024-53458
Sysax Multi Server 6.99 is vulnerable to a denial of service DoS condition when processing specially crafted SSH packets...
CVE-2024-53458
Sysax Multi Server 6.99 is vulnerable to a denial of service DoS condition when processing specially crafted SSH packets...