8 matches found
EUVD-2008-3781
Malware in sbrugna...
CVE-2008-3795
Buffer overflow in Ipswitch WSFTP Home client allows remote FTP servers to have an unknown impact via a long "message response."...
CVE-2008-3795
CVE-2008-3795 is a buffer overflow affecting the Ipswitch WS_FTP Home client, triggered by a long message response sent by a remote FTP server. The vulnerability's description indicates an unknown impact but classifies CVSS as high (AV:N/AC:L/Au:N/C:C/I:C/A:C). The core issue is a buffer overflow...
CVE-2008-3734
Format string vulnerability in Ipswitch WSFTP Home 2007.0.0.2 and WSFTP Professional 2007.1.0.0 allows remote FTP servers to cause a denial of service application crash or possibly execute arbitrary code via format string specifiers in a connection greeting response...
Ipswitch WS_FTP Home/Professional 8.0 - WS_FTP Client Format String
source: https://www.securityfocus.com/bid/30720/info Ipswitch WSFTP client is prone to a format-string vulnerability it fails to properly sanitize user-supplied input before passing it as the format specifier to a formatted-printing function. An attacker may exploit this issue to execute arbitrar...
CVE-2007-2213
CVE-2007-2213 affects Ipswitch WS FTP 2007 (WS_FTP Home/Professional 2007). The vulnerability is in the Initialize function of NetscapeFTPHandler, causing a denial of service (NULL dereference and application crash) via unspecified vectors related to “improper arguments.” Exploitation status is n...
CVE-2007-2213
Unspecified vulnerability in the Initialize function in NetscapeFTPHandler in WSFTP Home and Professional 2007 allows remote attackers to cause a denial of service NULL dereference and application crash via unspecified vectors related to "improper arguments."...
WS_FTP Home空指针引用远程拒绝服务漏洞
WSFTP Home是一个快速、强大的FTP客户程序。 WSFTP Home的NetscapeFTPHandler函数在处理用户输入时存在空指针引用,本地攻击者可能利用此漏洞对服务器程序造成拒绝服务。 ESI 00000000 75DC3E09 MOVZX EAX,WORD PTR ESI 如果以不正确的参数执行函数的话: int Initialize char str1, char str2 就可能触发这个漏洞,导致拒绝服务。 Ipswitch WSFTP Home 2007 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:...