Lucene search
K

32 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-4528

Malware in sbrugna...

6.8CVSS6.4AI score0.01885EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-4825

Malware in sbrugna...

4.3CVSS6.4AI score0.01279EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-4824

Malware in sbrugna...

5.8CVSS6.4AI score0.03233EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-4529

Malware in sbrugna...

5.8CVSS6.4AI score0.01843EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-4530

Malware in sbrugna...

4.3CVSS6.4AI score0.01267EPSS
Exploits0References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.8 views

Unreal Commander 0.92 - ZIP / RAR Archive Handling Traversal Arbitrary File Overwrite

No description provided by source. source: http://www.securityfocus.com/bid/25419/info Unreal Commander is prone to multiple remote vulnerabilities when handling malformed ZIP and RAR archives. These vulnerabilities include a directory-traversal vulnerability, an information-disclosure...

7.1AI score
Exploits0
NVD
NVD
added 2007/09/12 8:17 p.m.18 views

CVE-2007-4843

Directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 allows remote FTP servers to create or overwrite arbitrary files via a .. dot dot in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder...

5.8CVSS7.3AI score0.03233EPSS
Exploits1References6
Prion
Prion
added 2007/09/12 8:17 p.m.19 views

Command injection

X-Diesel Unreal Commander 0.92 build 565 and 573 does not properly react to an FTP server's behavior after sending a "CWD /" command, which allows remote FTP servers to cause a denial of service infinite loop by 1 repeatedly sending a 550 error response, or 2 sending a 550 error response and then...

4.3CVSS7.2AI score0.01279EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2007/09/12 8:17 p.m.20 views

Directory traversal

Directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 allows remote FTP servers to create or overwrite arbitrary files via a .. dot dot in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder...

5.8CVSS8AI score0.03233EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2007/09/12 8:17 p.m.19 views

CVE-2007-4844

X-Diesel Unreal Commander 0.92 build 565 and 573 does not properly react to an FTP server's behavior after sending a "CWD /" command, which allows remote FTP servers to cause a denial of service infinite loop by 1 repeatedly sending a 550 error response, or 2 sending a 550 error response and then...

4.3CVSS6.7AI score0.01279EPSS
Exploits1References6
CVE
CVE
added 2007/09/12 8:0 p.m.59 views

CVE-2007-4843

The CVE-2007-4843 entry concerns a directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 . A remote FTP server can craft a filename containing “..” to create or overwrite arbitrary files. The existing note indicates this can be leveraged for code execution by writi...

5.8CVSS7.3AI score0.03233EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2007/09/12 8:0 p.m.49 views

CVE-2007-4844

The CVE concerns X-Diesel Unreal Commander 0.92 (builds 565 and 573). The flaw is in how it handles an FTP server’s response to CWD /, leading to a denial of service (infinite loop) when the server repeatedly returns 550 errors or 550 followed by disconnect. Root cause: improper handling of FTP e...

4.3CVSS6.7AI score0.01279EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2007/09/12 8:0 p.m.26 views

CVE-2007-4844

X-Diesel Unreal Commander 0.92 build 565 and 573 does not properly react to an FTP server's behavior after sending a "CWD /" command, which allows remote FTP servers to cause a denial of service infinite loop by 1 repeatedly sending a 550 error response, or 2 sending a 550 error response and then...

6.7AI score0.01279EPSS
Exploits1References6
Cvelist
Cvelist
added 2007/09/12 8:0 p.m.26 views

CVE-2007-4843

Directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 allows remote FTP servers to create or overwrite arbitrary files via a .. dot dot in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder...

7.3AI score0.03233EPSS
Exploits1References6
securityvulns
securityvulns
added 2007/09/08 12:0 a.m.31 views

[HISPASEC] 2K7SEPT6 X-Diesel Unreal Commander v0.92 (build 573) multiple FTP-based vulnerabilities

HISPASEC Security Advisory http://blog.hispasec.com/lab/ Name : 2K7SEPT6 X-Diesel Unreal Commander v0.92 build 573 multiple FTP-based vulnerabilities Class : Remote directory traversal, Remote DoS Threat level : HIGH Discovered : 2007-09-06 Published : 2007-08-24 Credit : Gynvael Coldwind...

0.1AI score
Exploits0
Packet Storm
Packet Storm
added 2007/09/07 12:0 a.m.34 views

xdiesel-traverse.txt

HISPASEC Security Advisory http://blog.hispasec.com/lab/ Name : 2K7SEPT6 X-Diesel Unreal Commander v0.92 build 573 multiple FTP-based vulnerabilities Class : Remote directory traversal, Remote DoS Threat level : HIGH Discovered : 2007-09-06 Published : 2007-08-24 Credit : Gynvael Coldwind...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2007/09/06 12:0 a.m.13 views

Unreal Commander 0.92 - Directory Traversal

Unreal Commander 0.92 - Directory Traversal source: https://www.securityfocus.com/bid/25583/info Unreal Commander is prone to multiple remote vulnerabilities, including a directory-traversal issue and a denial-of-service issue. An attacker can exploit these issues to compromise the affected...

0.1AI score
Exploits0
NVD
NVD
added 2007/08/27 11:17 p.m.17 views

CVE-2007-4547

Unreal Commander 0.92 build 565 and 573 writes portions of heap memory into local files when extracting from an archive with malformed size information in a file header, which might allow user-assisted attackers to obtain sensitive information memory contents by reading the extracted files. NOTE:...

4.3CVSS5.9AI score0.01267EPSS
Exploits0References4
NVD
NVD
added 2007/08/27 11:17 p.m.17 views

CVE-2007-4546

Unreal Commander 0.92 build 565 and 573 lists the filenames from the Central Directory of a ZIP archive, but extracts to local filenames corresponding to names in Local File Header fields in this archive, which might allow remote attackers to trick a user into performing a dangerous file overwrit...

5.8CVSS6.5AI score0.01843EPSS
Exploits1References4
Prion
Prion
added 2007/08/27 11:17 p.m.20 views

Design/Logic Flaw

Unreal Commander 0.92 build 565 and 573 writes portions of heap memory into local files when extracting from an archive with malformed size information in a file header, which might allow user-assisted attackers to obtain sensitive information memory contents by reading the extracted files. NOTE:...

4.3CVSS6.4AI score0.01267EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder