CVE-2006-6909

2007-01-0911:00:00

mitre

www.cve.org

8.1 High

AI Score

Confidence

High

0.038 Low

EPSS

Percentile

91.9%

JSON

Stack-based buffer overflow in http.c in Karl Dahlke Edbrowse (aka Command line editor browser) 3.1.3 allows remote attackers to execute arbitrary code by operating an FTP server that sends directory listings with (1) long user names or (2) long group names.

References

marc.info/?l=full-disclosure&m=116760539609173&w=2

sourceforge.net/tracker/index.php?func=detail&aid=1622117&group_id=141946&atid=751061

www.securityfocus.com/bid/21832