Vulnerabilities > Ghisler > Total Commander
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-10-21 | CVE-2020-17381 | Incorrect Default Permissions vulnerability in Ghisler Total Commander 9.51 An issue was discovered in Ghisler Total Commander 9.51. | 7.3 |
2015-07-21 | CVE-2015-2869 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Ghisler Total Commander The FileInfo plugin before 2.22 for Ghisler Total Commander allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via (1) a large Size value in the Archive Member Header of a COFF Archive Library file, (2) a large Number Of Symbols value in the 1st Linker Member of a COFF Archive Library file, (3) a large Resource Table Count value in the LE Header of a Linear Executable file, or (4) a large value in a certain Object field in a Resource Table Entry in a Linear Executable file. | 5.0 |
2007-09-08 | CVE-2007-4756 | Path Traversal vulnerability in Ghisler Total Commander Directory traversal vulnerability in the FTP client in Total Commander before 7.02 allows remote FTP servers to create or overwrite arbitrary files via "..\" (dot dot backslash) sequences in a filename. | 6.8 |
2007-08-21 | CVE-2007-4464 | Code Injection vulnerability in multiple products CRLF injection vulnerability in the Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to spoof the information in the Image File Header tab via strings with CRLF sequences in the IMAGE_EXPORT_DIRECTORY array in a PE file, which could complicate forensics investigations. | 4.3 |
2007-08-21 | CVE-2007-4463 | PE File Denial of Service vulnerability in Total Commander FileInfo Plugin The Fileinfo 2.0.9 plugin for Total Commander allows user-assisted remote attackers to cause a denial of service (unhandled exception) via an invalid RVA address function pointer in (1) an IMAGE_THUNK_DATA structure, involving the (a) OriginalFirstThunk and (b) FirstThunk IMAGE_IMPORT_DESCRIPTOR fields, or (2) the AddressOfNames IMAGE_EXPORT_DIRECTORY field in a PE file. | 5.0 |