Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2006-5815

🗓️ 08 Nov 2006 23:00:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 74 Views🌐 WEB

Stack-based buffer overflow in ProFTPD 1.3.0 and earlier allows remote attackers to cause denial of service and execute arbitrary code

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
ALT Linux		Security fix for the ALT Linux 8 package proftpd version 1.3.0rel-alt1.3
14 Nov 200600:00
altlinux
ALT Linux		Security fix for the ALT Linux 8 package proftpd version 1.3.0rel-alt2
16 May 200700:00
altlinux
ALT Linux		Security fix for the ALT Linux 8 package proftpd version 1.3.0rel-alt1.2
13 Nov 200600:00
altlinux
FreeBSD		proftpd -- remote code execution vulnerabilities
10 Nov 200600:00
freebsd
Tenable Nessus		ProFTPD Command Truncation Cross-Site Request Forgery
22 Sep 200800:00
nessus
Tenable Nessus		Debian DSA-1222-2 : proftpd - several vulnerabilities
4 Dec 200600:00
nessus
Tenable Nessus		FreeBSD : proftpd -- remote code execution vulnerabilities (3f851b22-89fb-11db-a937-003048116330)
30 Dec 200600:00
nessus
Tenable Nessus		GLSA-200611-26 : ProFTPD: Remote execution of arbitrary code
4 Dec 200600:00
nessus
Tenable Nessus		Mandrake Linux Security Advisory : proftpd (MDKSA-2006:217-1)
18 Feb 200700:00
nessus
Tenable Nessus		ProFTPD < 1.3.0a Multiple Vulnerabilities
15 Oct 200700:00
nessus
Rows per page
NVD
Node
proftpd_projectproftpdRange1.3.0
ParameterPositionPathDescriptionCWE
dir1pathMKDCreate a writable directory to set up overflow payload pathCWE-119
dir1pathCWDChange working directory to the writable path to trigger sreplace usageCWE-119
dir2pathMKDCreate a secondary directory used as overflow staging areaCWE-119
dir2pathCWDNavigate into overflow staging area before exploitingCWE-119
dir2/.messagepathPUTUpload crafted .message file that triggers sreplace overflowCWE-119
dir2/.messagepathDELEAttempt file delete as part of preparing exploit stateCWE-119
250pathDELEAttempt file delete as part of preparing exploit stateCWE-119
dir2pathRMDRemove overflow staging directory after exploitCWE-119

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
23 Apr 2026 00:35Current
7.2High risk
Vulners AI Score7.2
CVSS 210
EPSS0.74734
CWE-119
cve-2006-5815sreplace functionproftpdbuffer overflowdenial of serviceremote exploit
74