Node

**Name of the Vulnerable Software and Affected Versions** Integard Pro versions prior to 2.0.0.9037 Integard Home versions prior to 2.0.0.9037 Integard Pro and Home versions 2.2.x prior to 2.2.0.9037 **Description** The web server has a buffer overflow via a long password in an administration login POST request, leading to arbitrary code execution. This issue can be exploited through an EIP-overwrite buffer overflow. **Recommendations** For Integard Pro and Home versions prior to 2.0.0.9037, update to version 2.0.0.9037 or later. For Integard Pro and Home versions 2.2.x prior to 2.2.0.9037, update to version 2.2.0.9037 or later. As a temporary workaround, consider restricting access to the administration login `POST` request until a patch is available. Avoid using long passwords in the administration login until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** VanDyke Software AbsoluteFTP versions 1.9.6 through 2.2.10 **Description** The issue is a stack-based buffer overflow that allows remote FTP servers to execute arbitrary code. This can be achieved by sending a crafted file name in a LIST command response. **Recommendations** For versions 1.9.6 through 2.2.10, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.