MitreCVE-2006-2180CVE-2006-2180
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
96.4%
Buffer overflow in Golden FTP Server Pro 2.70 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via a long argument to the (1) NLST or (2) APPE commands, as demonstrated by the Infigo FTPStress Fuzzer.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| kmint21_software | golden_ftp_server | 1.32b | cpe:2.3:a:kmint21_software:golden_ftp_server:1.32b:*:*:*:*:*:*:* |
| kmint21_software | golden_ftp_server | 2.70 | cpe:2.3:a:kmint21_software:golden_ftp_server:2.70:*:*:*:*:*:*:* |
References
archives.neohapsis.com/archives/bugtraq/2006-05/0139.html
marc.info/?l=bugtraq&m=114658586018818&w=2
secunia.com/advisories/19917
www.infigo.hr/en/in_focus/tools
www.infigo.hr/hr/in_focus/advisories/INFIGO-2006-05-03
www.osvdb.org/25217
www.securityfocus.com/bid/17801
www.vupen.com/english/advisories/2006/1640
exchange.xforce.ibmcloud.com/vulnerabilities/26195
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
96.4%