CVE-2007-1564

Published: Mar 21, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

RHSA-2007:0909

vendor-advisory

x_refsource_REDHAT

https://issues.rpath.com/browse/RPL-1201

x_refsource_CONFIRM

24889

third-party-advisory

x_refsource_SECUNIA

USN-447-1

vendor-advisory

x_refsource_UBUNTU

oval:org.mitre.oval:def:10646

vdb-entry

signature

x_refsource_OVAL

SUSE-SR:2007:006

vendor-advisory

x_refsource_SUSE

http://bindshell.net/papers/ftppasv/ftp-client-pasv-manipulation.pdf

x_refsource_MISC

http://www.kde.org/info/security/advisory-20070326-1.txt

x_refsource_CONFIRM

27108

third-party-advisory

x_refsource_SECUNIA

1017801

vdb-entry

x_refsource_SECTRACK

23091

vdb-entry

x_refsource_BID

ADV-2007-1076

vdb-entry

x_refsource_VUPEN

MDKSA-2007:072

vendor-advisory

x_refsource_MANDRIVA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-1564

Description

Affected Products

References