CVE-2007-1564 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-1564
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-1564

Description: The FTP protocol implementation in Konqueror 3.5.5 allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive information by specifying an alternate server address in an FTP PASV response.

CVE Status: Candidate

References: UBUNTU http://www.ubuntu.com/usn/usn-447-1 SUSE http://www.novell.com/linux/security/advisories/2007_6_sr.html ST 1017801 SAID Secunia Advisory: SA24889 Secunia Advisory: SA27108 REDHAT http://www.redhat.com/support/errata/RHSA-2007-0909.html MISC http://bindshell.net/papers/ftppasv/ftp-client-pasv-manipulation.pdf MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2007:072 CONFIRM http://www.kde.org/info/security/advisory-20070326-1.txt BID 23091

Return to the previous page.