CVE-2007-1564
CVE-2007-1564
The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 1
exploitdbwww.exploit-db.com/exploits/29770não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://bindshell.net/papers/ftppasv/ftp-client-pasv-manipulation.pdfhttp://secunia.com/advisories/24889http://secunia.com/advisories/27108http://securitytracker.com/id?1017801https://issues.rpath.com/browse/RPL-1201https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10646http://www.kde.org/info/security/advisory-20070326-1.txthttp://www.mandriva.com/security/advisories?name=MDKSA-2007:072http://www.novell.com/linux/security/advisories/2007_6_sr.htmlhttp://www.redhat.com/support/errata/RHSA-2007-0909.htmlhttp://www.securityfocus.com/bid/23091http://www.ubuntu.com/usn/usn-447-1