CVSS: 10.0EPSS: 2%CPEs: 1EXPL: 3CVE-2007-6453 – RaidenHTTPD 2.0.19 - 'ulang' Remote Command Execution
https://notcve.org/view.php?id=CVE-2007-6453
Directory traversal vulnerability in raidenhttpd-admin/workspace.php in RaidenHTTPD 2.0.19, when the WebAdmin function is enabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ulang parameter. Vulnerabilidad de salto de directorio en raidenhttpd-admin/workspace.php en RaidenHTTPD 2.0.19, cuando la función WebAdmin está activada, permite a atacantes remotos incluir y ejecutar archivos locales de su elección a través de la secuencia .. (punto punto) en el parámetro ulang. • https://www.exploit-db.com/exploits/4747 http://jvn.jp/jp/JVN%2390438169/index.html http://retrogod.altervista.org/rgod_raidenhttpdudo.html http://secunia.com/advisories/28143 http://securityreason.com/securityalert/3460 http://www.osvdb.org/39228 http://www.raidenhttpd.com/jp/security.html http://www.securityfocus.com/archive/1/485221/100/0/threaded http://www.securityfocus.com/bid/26903 http://www.vupen.com/english/advisories/2007/4244 https://exchange.xforce.ibmcloud.co • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.8EPSS: 1%CPEs: 2EXPL: 0CVE-2007-2179
https://notcve.org/view.php?id=CVE-2007-2179
Multiple unspecified vulnerabilities in IXceedCompression in XceddZipLib (RaidenFTPD.dll) in RaidenFTPD 2.4 allow remote attackers to cause a denial of service (crash) via unspecified vectors involving the (1) CalculateCrc, (2) Compress, and (3) Uncompress functions, which result in a NULL pointer dereference. Múltiples vulnerabilidades no especificadas en IXceedCompression en XceddZipLib (RaidenFTPD.dll) en RaidenFTPD 2.4 permite a atacantes remotos provocar denegación de servicio (caida) a través de vectores no especificados afectando a las funciones (1) CalculateCrc, (2) Compress, y (3) Uncompress, lo cual resulta en puntero NULL no referenciado. • http://securityreason.com/securityalert/2606 http://www.securityfocus.com/archive/1/466319/100/0/threaded http://www.securityfocus.com/bid/23570 https://exchange.xforce.ibmcloud.com/vulnerabilities/33776 •
CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 1CVE-2005-1480 – RaidenFTPd 2.4 - Unauthorized File Access
https://notcve.org/view.php?id=CVE-2005-1480
Directory traversal vulnerability in RaidenFTPD before 2.4.2241 allows remote attackers to read arbitrary files via a "..\\" (dot dot backslash) in the urlget site command. • https://www.exploit-db.com/exploits/25486 http://forum.raidenftpd.com/showflat.php?Board=UBB13&Number=45685 http://marc.info/?l=bugtraq&m=111507556127582&w=2 http://secunia.com/advisories/15037 http://www.osvdb.org/15713 http://www.securityfocus.com/bid/13292 https://exchange.xforce.ibmcloud.com/vulnerabilities/20368 •