Lucene search

[email protected]CVE-2006-6673

HistoryDec 21, 2006 - 1:28 a.m.

CVE-2006-6673

2006-12-2101:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

winftp

server

2.0.2

denial of service

cve-2006-6673

nvd

7.6 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.063 Low

EPSS

Percentile

93.6%

JSON

WinFtp Server 2.0.2 allows remote attackers to cause a denial of service (crash) via long (1) PASV, (2) LIST, (3) USER, (4) PORT, and possibly other commands.

CPENameOperatorVersion
winftp_server:winftp_serverwinftp servereq2.0.2

CPE	Name	Operator	Version
winftp_server:winftp_server	winftp server	eq	2.0.2

References

secunia.com/advisories/23412

www.vupen.com/english/advisories/2006/5069

www.exploit-db.com/exploits/2952

7.6 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.063 Low

EPSS

Percentile

93.6%

JSON