Lucene search
K

196 matches found

CVE
CVE
added 2025/08/13 8:53 p.m.32 views

CVE-2012-10060

Sysax Multi Server before 5.55 is vulnerable to a stack-based buffer overflow in its SSH service when a remote attacker supplies an overly long username during authentication. The input is copied into a fixed-size stack buffer without proper bounds checking, enabling remote code execution under t...

9.8CVSS6.6AI score0.0284EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2025/08/13 8:53 p.m.104 views

CVE-2012-10060 Sysax Multi Server < 5.55 SSH Username Buffer Overflow

Sysax Multi Server versions prior to 5.55 contain a stack-based buffer overflow in its SSH service. When a remote attacker supplies an overly long username during authentication, the server copies the input to a fixed-size stack buffer without proper bounds checking. This allows remote code...

9.3CVSS0.0284EPSS
Exploits1References7
ATTACKERKB
ATTACKERKB
added 2025/08/13 8:53 p.m.3 views

CVE-2012-10060

Sysax Multi Server versions prior to 5.55 contain a stack-based buffer overflow in its SSH service. When a remote attacker supplies an overly long username during authentication, the server copies the input to a fixed-size stack buffer without proper bounds checking. This allows remote code...

9.8CVSS6.7AI score0.0284EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/08/13 12:0 a.m.6 views

PT-2025-33095

Name of the Vulnerable Software and Affected Versions: Sysax Multi Server versions prior to 5.55 Description: Sysax Multi Server versions prior to 5.55 contain a stack-based buffer overflow in its SSH service. When a remote attacker provides an overly long username during authentication, the serv...

9.8CVSS6.7AI score0.0284EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/08/13 12:0 a.m.5 views

Codeorigin Sysax Multi Server 安全漏洞

Codeorigin Sysax Multi Server is an FTP File Transfer Protocol server and Shell server for Windows from Codeorigin USA. A security vulnerability exists in Codeorigin Sysax Multi Server versions prior to 5.55, which stems from a stack buffer overflow in the SSH service's handling of usernames, whi...

9.8CVSS8AI score0.0284EPSS
Exploits1References8
RedhatCVE
RedhatCVE
added 2025/08/07 8:31 p.m.6 views

CVE-2013-10065

A denial-of-service vulnerability exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in loss of availability. The flaw is triggered during the handling of malformed key exchange data, including a...

8.7CVSS6.3AI score0.01141EPSS
Exploits1References1
NVD
NVD
added 2025/08/05 8:15 p.m.6 views

CVE-2013-10065

A denial-of-service vulnerability exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in loss of availability. The flaw is triggered during the handling of malformed key exchange data, including a...

8.7CVSS0.01141EPSS
Exploits1References4
CVE
CVE
added 2025/08/05 8:5 p.m.20 views

CVE-2013-10065

CVE-2013-10065 affects Sysax Multi-Server 6.10 SSHD. A specially crafted SSH key exchange packet can crash the service, causing denial of service. The flaw is triggered by malformed key exchange data, including a non‑standard byte (0x28) replacing the SSH protocol delimiter. Multiple sources (NVD...

8.7CVSS6.5AI score0.01141EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/05 8:5 p.m.4 views

CVE-2013-10065 Sysax Multi-Server <= 6.10 SSHD Key Exchange DoS

A denial-of-service vulnerability exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in loss of availability. The flaw is triggered during the handling of malformed key exchange data, including a...

8.7CVSS6.3AI score0.01141EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/08/05 8:5 p.m.10 views

CVE-2013-10065 Sysax Multi-Server <= 6.10 SSHD Key Exchange DoS

A denial-of-service vulnerability exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in loss of availability. The flaw is triggered during the handling of malformed key exchange data, including a...

8.7CVSS0.01141EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/08/05 12:0 a.m.4 views

Codeorigin Sysax Multi Server 安全漏洞

Codeorigin Sysax Multi Server is an FTP File Transfer Protocol server and Shell server for Windows from Codeorigin USA. A security vulnerability exists in Codeorigin Sysax Multi Server version 6.10 that stems from not properly handling SSH key exchange data, which could result in a denial of...

8.7CVSS6.5AI score0.01141EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/08/05 12:0 a.m.8 views

PT-2025-31989 · Unknown · Sysax Multi Server

Name of the Vulnerable Software and Affected Versions: Sysax Multi-Server version 6.10 Description: A denial-of-service issue exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in a loss of...

8.7CVSS6.1AI score0.01141EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/23 7:14 a.m.8 views

CVE-2024-53459

Sysax Multi Server 6.99 is vulnerable to Cross Site Scripting XSS via the /scgi?sid parameter...

5.4CVSS6.1AI score0.00303EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:31 p.m.5 views

CVE-2020-23574

When uploading a file in Sysax Multi Server 6.90, an authenticated user can modify the filename="" parameter in the uploadfilename1.htm form to a length of 368 or more bytes. This will create a buffer overflow condition, causing the application to crash...

6.5CVSS7.3AI score0.0095EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:9 p.m.12 views

CVE-2020-13227

An issue was discovered in Sysax Multi Server 6.90. An attacker can determine the username under which the web server is running by triggering an invalid path permission error. This bypasses the fakepath protection mechanism...

5.3CVSS6.9AI score0.01869EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:11 a.m.8 views

CVE-2012-6530

Stack-based buffer overflow in Sysax Multi Server before 5.52, when HTTP is enabled, allows remote authenticated users with the create folder permission to execute arbitrary code via a crafted request...

7.1CVSS7.9AI score0.46074EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:48 p.m.8 views

CVE-2009-4790

Multiple directory traversal vulnerabilities in Sysax Multi Server 4.5 allow remote authenticated users to read or modify arbitrary files via crafted FTP commands. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

9CVSS6.7AI score0.03905EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/07 1:25 a.m.9 views

CVE-2024-53458

Sysax Multi Server 6.99 is vulnerable to a denial of service DoS condition when processing specially crafted SSH packets...

7.5CVSS7AI score0.00489EPSS
Exploits1References1
NVD
NVD
added 2025/03/05 6:15 p.m.8 views

CVE-2024-53458

Sysax Multi Server 6.99 is vulnerable to a denial of service DoS condition when processing specially crafted SSH packets...

7.5CVSS0.00489EPSS
Exploits1References2
OSV
OSV
added 2025/03/05 6:15 p.m.6 views

CVE-2024-53458

Sysax Multi Server 6.99 is vulnerable to a denial of service DoS condition when processing specially crafted SSH packets...

7.5CVSS5.8AI score0.00489EPSS
Exploits1References2
Rows per page
Query Builder