exploit the possibilities

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 8 of 8

Files

Surge FTP 23c8 Buffer Overflow

Posted Jul 23, 2013

Authored by Anil Pazvant

Surge FTP server versions 23c8 and below suffer from a buffer overflow vulnerability.

tags | advisory, overflow

advisories | CVE-2013-4742

SHA-256 | 8371e4e6a2219b80f0cdd60273de6526a797aaa7f16bbda2d393ad1b7b415834

Download | Favorite | View

Related Files

SurgeFTP Remote Command Execution

Posted Dec 20, 2012

Authored by Spencer McIntyre | Site metasploit.com

This Metasploit module exploits a flaw in the SurgeFTP server's web-based administrative console to execute arbitrary commands.

tags | exploit, web, arbitrary

SHA-256 | 9c5497a6325d67d7f481c7eb716e3d3140096da4260b045df2ab7396b276dad6

Download | Favorite | View

Surge-FTP 23b6 Cross Site Scripting

Posted Aug 16, 2011

Authored by Houssam Sahli

Surge-FTP version 23b6 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss

SHA-256 | c4cac949fe0724969f92b678d5000ab08b6fa1d2d6bd11b348a7070098990d47

Download | Favorite | View

Surge FTP Admin Web Module Directory Traversal

Posted Jan 16, 2010

Authored by indoushka

Surge FTP's administrative web interface suffers from an Apache Tomcat 5.5.26 directory traversal vulnerability.

tags | exploit, web, file inclusion

SHA-256 | 5aa049891604b9dfa07b7722c2d65d120db87b6fa8bce970aa60b60c0e9d479d

Download | Favorite | View

Surge-FTP Cross Site Scripting

Posted Jan 11, 2010

Authored by FB1H2S

Surge-FTP suffers from an administrative web interface cross site scripting vulnerability.

tags | exploit, web, xss

SHA-256 | 3647c9dbf6a9fe304ceceda29eece4259647eb66d41dcee1ea92100a3f07a88d

Download | Favorite | View

surgeftpizza.zip

Posted Feb 25, 2008

Authored by Luigi Auriemma | Site aluigi.org

SurgeFTP versions 2.3a2 and below suffer from a NULL pointer access vulnerability that allows for a denial of service condition. Proof of concept exploit included.

tags | exploit, denial of service, proof of concept

SHA-256 | 96ba9e5381e592d4d072a44bfec95c6c709a514dfe354bb195848ce5f7acd8cf

Download | Favorite | View

SurgeFTP_23a1_xss_06_062.txt

Posted Jul 11, 2007

Authored by Nico Leidecker | Site portcullis-security.com

SurgeFTP version 2.3a1 Linux suffers from a cross site scripting vulnerability.

tags | advisory, xss

systems | linux

SHA-256 | eef9a98052e8bafe92d55157a4fa35e226ac63cbe789ec403cfc1bb8b0d1221e

Download | Favorite | View

SurgeFTP_23a1_dos_06_061.txt

Posted Jul 11, 2007

Authored by Nico Leidecker | Site portcullis-security.com

SurgeFTP version 2.3a1 Linux suffers from a denial of service condition in its mirror mechanism.

tags | advisory, denial of service

systems | linux

SHA-256 | c2e32fdacdb65dce7021a2557bc1a2223d451dd4eeac4d1916119a75c0f49443

Download | Favorite | View

surgeftp22m1.txt

Posted Apr 17, 2005

Authored by Tan Chew Keong | Site security.org.sg

SurgeFTP is susceptible to a LEAK command denial of service vulnerability. Tested versions include SurgeFTP versions 2.2m1 and 2.2k3 Windows on English Win2K SP4, WinXP SP2.

tags | advisory, denial of service

systems | windows

SHA-256 | 870f7f9a0e500e8dfffd3386dd856ff95f0c6018ebb9e1b154f414caa090d494

Download | Favorite | View