GCVE - cpe:2.3:a:attachmate:reflection_ftp_client:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:attachmate:reflection_ftp_client:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Attachmate (`4e465018-dd66-5abe-8548-13fc01c98a8e`)
Product	Reflection Ftp Client (`6e9bb2eb-4097-5c22-a649-bc65ce082cc2`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2014-0605`	vulnerable	2026-06-03 14:33:39.050358	Details available Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP Client before 14.1.429 allows remote attackers to execute arbitrary code via unspecified vectors to the SaveSettings method. Published: 2015-02-06T11:00:00.000Z Updated: 2024-08-06T09:20:19.715Z Open on db.gcve.eu Reference links http://support.attachmate.com/techdocs/2501.html http://www.zerodayinitiative.com/advisories/ZDI-14-290/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-0604`	vulnerable	2026-06-03 14:33:39.050062	Details available Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP Client before 14.1.429 allows remote attackers to execute arbitrary code via unspecified vectors to the StartLog method. Published: 2015-02-06T11:00:00.000Z Updated: 2024-08-06T09:20:19.858Z Open on db.gcve.eu Reference links http://support.attachmate.com/techdocs/2501.html http://www.zerodayinitiative.com/advisories/ZDI-14-289/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2014-0603`	vulnerable	2026-06-03 14:33:39.049679	Details available The rftpcom.dll ActiveX control in Attachmate Reflection FTP Client before 14.1.429 allows remote attackers to cause a denial of service (memory corruption) and execute arbitrary code via vectors related to the (1) GetGlobalSettings or (2) GetSiteProperties3 methods, which triggers a dereference of an arbitrary memory address. NOTE: this issue was MERGED with CVE-2014-0606 because it is the same type of vulnerability, affecting the same set of versions, and discovered by the same researcher. Published: 2015-02-06T11:00:00.000Z Updated: 2024-08-06T09:20:19.880Z Open on db.gcve.eu Reference links http://support.attachmate.com/techdocs/2501.html http://www.zerodayinitiative.com/advisories/ZDI-14-288/ http://www.zerodayinitiative.com/advisories/ZDI-14-291/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.