Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

ghisler total commander vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2007-4756
Directory traversal vulnerability in the FTP client in Total Commander prior to 7.02 allows remote FTP servers to create or overwrite arbitrary files via "..\" (dot dot backslash) sequences in a filename. NOTE: the "..\" are not displayed when the user lists f...
Ghisler Total Commander
NA
CVE-2015-2869
The FileInfo plugin prior to 2.22 for Ghisler Total Commander allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via (1) a large Size value in the Archive Member Header of a COFF Archive Library file, (2) a large Number Of Symbol...
Ghisler Total Commander
7.3
CVSSv3
CVE-2020-17381
An issue exists in Ghisler Total Commander 9.51. Due to insufficient access restrictions in the default installation directory, an attacker can elevate privileges by replacing the %SYSTEMDRIVE%\totalcmd\TOTALCMD64.EXE binary.
Ghisler Total Commander 9.51
NA
CVE-2005-4066
Total Commander 6.53 uses weak encryption to store FTP usernames and passwords in WCX_FTP.INI, which allows local users to decrypt the passwords and gain access to FTP servers, as possibly demonstrated by the W32.Gudeb worm.
Christian Ghisler Total Commander 6.53
NA
CVE-2007-4463
The Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote malicious users to cause a denial of service (unhandled exception) via an invalid RVA address function pointer in (1) an IMAGE_THUNK_DATA structure, involving the (a) OriginalFirstThunk and (b) FirstThunk I...
Fransois Gannier Fileinfo Plugin 2.09Ghisler Total Commander
NA
CVE-2007-4464
CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote malicious users to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGE_EXPORT_DIRECTORY array in a PE file, which could complicate...
Fransois Gannier Fileinfo Plugin 2.09Ghisler Total Commander
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validationCVE-2012-1823malicious code‎CVE-2024-5770CVE-2023-45866CVE-2024-35687local usersCVE-2024-31246CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook