Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2006-6171
HistoryNov 30, 2006 - 3:00 p.m.

CVE-2006-6171

2006-11-3015:00:00
mitre
raw.githubusercontent.com
2

6.1 Medium

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.2%

JSON

ProFTPD 1.3.0a and earlier does not properly set the buffer size limit when CommandBufferSize is specified in the configuration file, which leads to an off-by-two buffer underflow. NOTE: in November 2006, the role of CommandBufferSize was originally associated with CVE-2006-5815, but this was an error stemming from a vague initial disclosure. NOTE: ProFTPD developers dispute this issue, saying that the relevant memory location is overwritten by assignment before further use within the affected function, so this is not a vulnerability

Related

debiancve 3
openvas 12
nessus 7
slackware 1
debian 3
osv 1
gentoo 1
cve 2
checkpoint_advisories 1
securityvulns 3
packetstorm 2
cvelist 2
altlinux 3
ubuntucve 2
freebsd 1
debiancve
debiancve
CVE-2006-6171
2006-11-30 15:28:00
CVE-2006-5815
2006-11-08 23:07:00
CVE-2006-6170
2006-11-30 15:28:00
openvas
openvas
Slackware Advisory SSA:2006-335-02 proftpd
2012-09-11 00:00:00
Debian Security Advisory DSA 1222-1 (proftpd)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1222-1)
2008-01-17 00:00:00
nessus
nessus
Debian DSA-1222-2 : proftpd - several vulnerabilities
2006-12-04 00:00:00
GLSA-200611-26 : ProFTPD: Remote execution of arbitrary code
2006-12-04 00:00:00
ProFTPD < 1.3.0a Multiple Vulnerabilities
2007-10-15 00:00:00
slackware
slackware
[slackware-security] proftpd
2006-12-01 22:56:20
debian
debian
[SECURITY] [DSA 1222-1] New proftpd packages fix several vulnerabilities
2006-11-30 17:13:51
[SECURITY] [DSA 1222-2] New proftpd packages fix several vulnerabilities
2006-12-01 18:11:17
[SECURITY] [DSA 1218-1] New proftpd packages fix denial of service
2006-11-21 18:10:59
osv
osv
proftpd
2006-11-30 00:00:00
gentoo
gentoo
ProFTPD: Remote execution of arbitrary code
2006-11-30 00:00:00
cve
cve
CVE-2006-6171
2006-11-30 15:28:00
CVE-2006-5815
2006-11-08 23:07:00
checkpoint_advisories
checkpoint_advisories
ProFTPD SReplace Function Buffer Overflow (CVE-2006-5815)
2009-10-12 00:00:00
securityvulns
securityvulns
[OpenPKG-SA-2006.035] OpenPKG Security Advisory &#40;proftpd&#41;
2006-11-17 00:00:00
[Full-disclosure] ProFTPD 1.3.0 remote stack overflow
2006-11-28 00:00:00
CVE-2006-5815: remote code execution in ProFTPD
2006-11-28 00:00:00
packetstorm
packetstorm
vd_proftpd.pm.txt
2006-12-01 00:00:00
ProFTPD 1.2 - 1.3.0 sreplace Buffer Overflow (Linux)
2011-01-10 00:00:00
cvelist
cvelist
CVE-2006-5815
2006-11-08 23:00:00
CVE-2006-6170
2006-11-30 15:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package proftpd version 1.3.0rel-alt1.2
2006-11-13 00:00:00
Security fix for the ALT Linux 8 package proftpd version 1.3.0rel-alt2
2007-05-16 00:00:00
Security fix for the ALT Linux 8 package proftpd version 1.3.0rel-alt1.3
2006-11-14 00:00:00
ubuntucve
ubuntucve
CVE-2006-5815
2006-11-08 00:00:00
CVE-2006-6170
2006-11-30 00:00:00
freebsd
freebsd
proftpd -- remote code execution vulnerabilities
2006-11-10 00:00:00

6.1 Medium

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.2%

JSON
Related for CVELIST:CVE-2006-6171
debiancve3openvas12nessus7slackware1debian3osv1gentoo1cve2checkpoint_advisories1securityvulns3packetstorm2cvelist2altlinux3ubuntucve2freebsd1