Fernando.Mengali

**Name of the Vulnerable Software and Affected Versions** AOL AIM Triton version 1.0.4 **Description** A vulnerability was found in the Invite Handler component, where the manipulation of the `CSeq` argument leads to denial of service. The attack can be initiated remotely. This issue affects products that are no longer supported by the maintainer. **Recommendations** For AOL AIM Triton version 1.0.4, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Armcode AlienIP version 2.41 **Description** A vulnerability has been found in the Locate Host Handler component of Armcode AlienIP, which can lead to denial of service. The attack can be launched on the local host. The exploit has been disclosed to the public. **Recommendations** For Armcode AlienIP version 2.41, consider disabling the Locate Host Handler component until a patch is available to prevent potential denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Rizone Soft Notepad3 version 1.0.2.350 **Description** A problematic issue was found in the Encryption Passphrase Handler component, affecting an unknown function. This issue leads to denial of service and requires local attacking. The exploit has been disclosed to the public. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Rizone Soft Notepad3 version 1.0.2.350, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Global Scape CuteFTP version 9.3.0.3 **Description** A vulnerability was found in Global Scape CuteFTP, classified as problematic. The issue affects some unknown functionality. The manipulation of the argument `Host/Username/Password` leads to denial of service. The attack needs to be approached locally. **Recommendations** For Global Scape CuteFTP version 9.3.0.3, as a temporary workaround, consider restricting the manipulation of the `Host/Username/Password` argument to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AMPPS version 2.7 **Description** A vulnerability has been found in the Encryption Passphrase Handler component, which can be exploited to cause a denial of service. The attack can be launched remotely. Upgrading to version 4.0 is able to address this issue. **Recommendations** For AMPPS version 2.7, upgrade to version 4.0 to address the issue. As a temporary workaround, consider restricting access to the Encryption Passphrase Handler component until the upgrade is applied.

**Name of the Vulnerable Software and Affected Versions** Munsoft Easy Outlook Express Recovery version 2.0 **Description** A problematic issue has been found in the Registration Key Handler component, leading to denial of service. Local access is required to exploit this issue. The exploit has been disclosed to the public. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Munsoft Easy Outlook Express Recovery version 2.0, consider disabling the Registration Key Handler component as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Munsoft Easy Archive Recovery version 2.0 **Description** A problematic vulnerability was found in the Registration Key Handler component, leading to denial of service. The attack must be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Munsoft Easy Archive Recovery version 2.0, consider disabling the Registration Key Handler component as a temporary workaround until a patch is available. Restrict local access to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nsasoft NBMonitor Network Bandwidth Monitor version 1.6.5.0 **Description** A problematic vulnerability has been found in the Registration Handler component of the software, which can lead to denial of service. The attack must be approached locally. **Recommendations** For Nsasoft NBMonitor Network Bandwidth Monitor version 1.6.5.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nsasoft Network Sleuth version 3.0.0.0 **Description** A vulnerability was found in the Registration Handler component of Nsasoft Network Sleuth, which can lead to denial of service. The issue can be exploited locally. **Recommendations** For Nsasoft Network Sleuth version 3.0.0.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Navicat version 12.0.29 **Description** A vulnerability was found in the MySQL Connection Handler component of Navicat, which can lead to denial of service. The manipulation requires a local attack. The exploit has been disclosed to the public and may be used. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Navicat version 12.0.29, as a temporary workaround, consider restricting access to the MySQL Connection Handler component until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** South River WebDrive version 18.00.5057 **Description** A vulnerability was found in the New Secure WebDAV component, which can lead to denial of service. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. **Recommendations** For South River WebDrive version 18.00.5057, consider disabling the New Secure WebDAV component until a patch is available to prevent potential denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Hyper CdCatalog version 2.3.1 **Description** A problematic issue was found in the HCF File Handler component, leading to denial of service. The manipulation can be exploited locally. The issue has been publicly disclosed and may be used for attacks. The vendor was contacted about this disclosure but did not respond. **Recommendations** For Hyper CdCatalog version 2.3.1, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Gabriels FTP Server version 1.2 **Description** A problematic issue affects some unknown processing in the software. The manipulation of the `USERNAME` argument leads to denial of service. The attack may be initiated remotely. It is estimated that a significant number of devices may be affected, but the exact number is not specified. There is no information about real-world incidents where this issue was exploited. **Recommendations** To fix this issue, apply a patch to Gabriels FTP Server version 1.2. As a temporary workaround, consider restricting the use of the `USERNAME` argument until a patch is available.

**Name of the Vulnerable Software and Affected Versions** SpyCamLizard version 1.230 **Description** A vulnerability has been found in the HTTP GET Request Handler component of SpyCamLizard, affecting an unknown function. This issue leads to denial of service and can be exploited remotely. The exploit has been disclosed to the public. **Recommendations** For SpyCamLizard version 1.230, consider disabling the HTTP GET Request Handler component as a temporary workaround until a patch is available. Restrict access to the component to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Poikosoft EZ CD Audio Converter version 8.0.7 **Description** A problematic vulnerability was found in the Activation Handler component. The manipulation of the `Key` argument leads to denial of service. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. **Recommendations** For Poikosoft EZ CD Audio Converter version 8.0.7, as a temporary workaround, consider restricting local access to the Activation Handler component until a patch is available. Avoid manipulating the `Key` argument in the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Kmint21 Golden FTP Server version 2.02b **Description** A vulnerability was found in the PASV Command Handler component, which can lead to denial of service when manipulated. The attack can be initiated remotely. **Recommendations** For Kmint21 Golden FTP Server version 2.02b, consider disabling the PASV Command Handler component as a temporary workaround until a patch is available. Restrict access to the server to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** BORGChat version 1.0.0 Build 438 **Description** A problematic issue was found in the Service Port 7551 component, leading to denial of service. The manipulation can be initiated remotely. **Recommendations** For BORGChat version 1.0.0 Build 438, consider restricting access to Service Port 7551 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Mafiatic Blue Server version 1.1 **Description** A problematic issue has been found in the Connection Handler component, leading to denial of service. The attack can be launched remotely. The issue affects some unknown functionality of the component. **Recommendations** For Mafiatic Blue Server version 1.1, consider disabling the Connection Handler component as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Nsasoft ShareAlarmPro version 2.1.4 **Description** A vulnerability was found in the Registration Handler component of Nsasoft ShareAlarmPro. The manipulation of the `Name/Key` argument leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. **Recommendations** For Nsasoft ShareAlarmPro version 2.1.4, consider restricting local access to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid manipulating the `Name/Key` argument in the Registration Handler component. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Solar FTP Server versions 2.1.1 through 2.1.2 **Description** The issue is related to an uncontrolled resource consumption in the PASV mode of the Solar FTP Server, which can be exploited by a remote attacker to cause a denial of service. The vulnerability affects the PASV Command Handler component and can be initiated remotely. **Recommendations** For Solar FTP Server versions 2.1.1 and 2.1.2, apply a patch to fix this issue. As a temporary workaround, consider restricting access to the PASV Command Handler until a patch is available.