Filtered by vendor Jcraft
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2016-5725 | 2 Jcraft, Microsoft | 2 Jsch, Windows | 2024-11-21 | 4.3 MEDIUM | 5.9 MEDIUM |
Directory traversal vulnerability in JCraft JSch before 0.1.54 on Windows, when the mode is ChannelSftp.OVERWRITE, allows remote SFTP servers to write to arbitrary files via a ..\ (dot dot backslash) in a response to a recursive GET command. | |||||
CVE-2002-2102 | 1 Jcraft | 1 Jzlib | 2024-11-20 | 5.0 MEDIUM | N/A |
InfBlocks.java in JCraft JZlib before 0.0.7 allow remote attackers to cause a denial of service (NullPointerException) via an invalid block of deflated data. |