transfer software vulnerabilities
vulnerabilities.aspcode.net
Searching transfer software vulnerabilities
InterScan VirusWall 3.52 build 1462 allows remo
VirusWall
|
InterScan
|
InterScan VirusWall 3.52 build 1462 allows remote attackers to bypass virus protection via e-mail messages with headers that violate RFC specifications by having (or missing) space characters in unexpected places (aka "space gap"), such as (1) Content-Type :", (2) "Content-Transfer-Encoding :", (3) no space before a boundary declaration, or (4) "boundary= ", which is processed by Outlook Express.
The Network News Transfer Protocol (NNTP) compo
Transfer
|
Protocol
|
Network
|
News
|
The Network News Transfer Protocol (NNTP) component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange 2000 Server, and Exchange Server 2003 allows remote attackers to execute arbitrary code via XPAT patterns, possibly related to improper length validation and an "unchecked buffer," leading to off-by-one and heap-based buffer overflows.
The SMTP (Simple Mail Transfer Protocol) compon
SMTP
|
The SMTP (Simple Mail Transfer Protocol) component of Microsoft Windows XP 64-bit Edition, Windows Server 2003, Windows Server 2003 64-bit Edition, and the Exchange Routing Engine component of Exchange Server 2003, allows remote attackers to execute arbitrary code via a malicious DNS response message containing length values that are not properly validated.
Multiple heap-based buffer overflows in (1) isa
heap-based
|
overflows
|
Multiple
|
buffer
|
Multiple heap-based buffer overflows in (1) isaNVWRequest.dll and (2) relay.dll in Trend Micro ServerProtect Management Console 5.58 and earlier, as used in Control Manager 2.5 and 3.0 and Damage Cleanup Server 1.1, allow remote attackers to execute arbitrary code via "wrapped" length values in Chunked transfer requests. NOTE: the original report suggests that the relay.dll issue is related to a problem in which a Microsoft Foundation Classes (MFC) static library returns invalid values under heavy load. As such, this might not be a vulnerability in Trend Micro's product.
The Apache HTTP server before 1.3.34, and 2.0.x
server
|
before
|
Apache
|
HTTP
|
The Apache HTTP server before 1.3.34, and 2.0.x before 2.0.55, when acting as an HTTP proxy, allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Apache to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
Microsoft IIS 5.0 and 6.0 allows remote attacke
application
|
protection
|
attackers
|
Microsoft
|
firewall
|
request
|
attacks
|
conduct
|
allows
|
remote
|
poison
|
bypass
|
cache
|
HTTP
|
both
|
via
|
web
|
IIS
|
XSS
|
Microsoft IIS 5.0 and 6.0 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes IIS to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
Jakarta Tomcat 5.0.19 (Coyote/1.1) and Tomcat 4
Jakarta
|
Tomcat
|
Jakarta Tomcat 5.0.19 (Coyote/1.1) and Tomcat 4.1.24 (Coyote/1.0) allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Tomcat to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
IBM WebSphere 5.1 and WebSphere 5.0 allows remo
application
|
protection
|
attackers
|
WebSphere
|
firewall
|
conduct
|
request
|
attacks
|
remote
|
allows
|
bypass
|
poison
|
cache
|
both
|
HTTP
|
via
|
web
|
IBM
|
XSS
|
IBM WebSphere 5.1 and WebSphere 5.0 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes WebSphere to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
BEA Systems WebLogic 8.1 SP1 allows remote atta
application
|
protection
|
attackers
|
firewall
|
WebLogic
|
Systems
|
request
|
conduct
|
attacks
|
bypass
|
remote
|
allows
|
poison
|
cache
|
HTTP
|
both
|
BEA
|
via
|
web
|
XSS
|
SP1
|
BEA Systems WebLogic 8.1 SP1 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes WebLogic to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
Oracle 9i Application Server (Oracle9iAS) 9.0.2
Application
|
Server
|
Oracle
|
Oracle 9i Application Server (Oracle9iAS) 9.0.2 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes Application Server to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
PHP Advanced Transfer Manager 1.00 through 1.30
Transfer
|
Advanced
|
Manager
|
PHP
|
PHP Advanced Transfer Manager 1.00 through 1.30 stores sensitive information, including password hashes, under the web root with insufficient access control, which allows remote attackers to download each password hash via a direct request for a users/[USERNAME] file.
Buffer overflow in the Motorola PEBL U6 08.83.7
P2K-based
|
attackers
|
possibly
|
overflow
|
Motorola
|
service
|
088376R
|
remote
|
Buffer
|
denial
|
phones
|
allows
|
other
|
cause
|
PEBL
|
Buffer overflow in the Motorola PEBL U6 08.83.76R, and possibly other Motorola P2K-based phones, allows remote attackers to cause a denial of service (device shutdown), and possibly execute arbitrary code, via a long OBEX setpath to the OBEX File Transfer (aka FTP) service on Bluetooth channel 9.
Unspecified vulnerability in Hitachi XFIT/S, XF
vulnerability
|
Unspecified
|
XFIT/S/JCA
|
XFIT/S/ZGN
|
Procedure
|
attackers
|
service
|
Hitachi
|
remote
|
denial
|
XFIT/S
|
ZENGIN
|
allows
|
TCP/IP
|
cause
|
Unspecified vulnerability in Hitachi XFIT/S, XFIT/S/JCA, XFIT/S/ZGN, and XFIT/S ZENGIN TCP/IP Procedure allows remote attackers to cause a denial of service (server process and transfer control process stop) when the products "receive data unexpectedly".
ircp_io.c in libopenobex for ircp 1.2, when irc
user-assisted
|
destination
|
overwriting
|
libopenobex
|
overwrite
|
attackers
|
dangerous
|
arbitrary
|
ircp_ioc
|
Transfer
|
session
|
remote
|
allows
|
prompt
|
option
|
files
|
which
|
file
|
name
|
ircp
|
OBEX
|
user
|
does
|
run
|
via
|
not
|
ircp_io.c in libopenobex for ircp 1.2, when ircp is run with the -r option, does not prompt the user when overwriting files, which allows user-assisted remote attackers to overwrite dangerous files via an arbitrary destination file name in an OBEX File Transfer session.
Multiple PHP remote file inclusion vulnerabilit
vulnerabilities
|
inclusion
|
Multiple
|
Advanced
|
Transfer
|
Manager
|
remote
|
file
|
PHP
|
Multiple PHP remote file inclusion vulnerabilities in PHP Advanced Transfer Manager (phpAtm) 1.21 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the include_location parameter in (1) confirm.php or (2) login.php. NOTE: the include_location parameter to index.php is already covered by CVE-2005-1681.
Multiple buffer overflows in FileZilla before 2
FileZilla
|
arbitrary
|
attackers
|
overflows
|
Multiple
|
execute
|
service
|
denial
|
buffer
|
before
|
remote
|
cause
|
allow
|
2230a
|
code
|
Multiple buffer overflows in FileZilla before 2.2.30a allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors related to (1) Options.cpp when sotring settings in the registry, and (2) the transfer queue (QueueCtrl.cpp). NOTE: some of these details are obtained from third party information.
LGSERVER.EXE in BrightStor Mobile Backup 4.0 al
LGSERVEREXE
|
BrightStor
|
attackers
|
service
|
denial
|
remote
|
Backup
|
Mobile
|
allows
|
cause
|
LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\Server\data\transfer\.
Directory traversal vulnerability in AOL Instan
vulnerability
|
Messenger
|
Directory
|
traversal
|
Instant
|
AOL
|
Directory traversal vulnerability in AOL Instant Messenger (AIM) 5.9 and earlier, and ICQ 5.1 and probably earlier, allows user-assisted remote attackers to write files to arbitrary locations via a .. (dot dot) in a filename in a file transfer operation.
Heap-based buffer overflow in Microsoft Outlook
Heap-based
|
Microsoft
|
Transfer
|
Protocol
|
overflow
|
Windows
|
Network
|
Outlook
|
Express
|
earlier
|
buffer
|
remote
|
allows
|
Vista
|
Mail
|
News
|
Heap-based buffer overflow in Microsoft Outlook Express 6 and earlier, and Windows Mail for Vista, allows remote Network News Transfer Protocol (NNTP) servers to execute arbitrary code via long NNTP responses that trigger memory corruption.
Yahoo! Messenger 8.1.0.209 and 8.1.0.402 allows
Messenger
|
Yahoo
|
Yahoo! Messenger 8.1.0.209 and 8.1.0.402 allows remote attackers to cause a denial of service (application crash) via certain file-transfer packets, possibly involving a buffer overflow, as demonstrated by ym8bug.exe. NOTE: this might be related to CVE-2007-4515. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Software vulnerabilities results 41 to 60 of 67
Page:
◄
1
2
3
4
►