Lucene search

[email protected]NVD:CVE-2006-2027

HistoryApr 26, 2006 - 12:06 a.m.

CVE-2006-2027

2006-04-2600:06:00

[email protected]

web.nvd.nist.gov

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.9%

JSON

Buffer overflow in Unicode processing in the logging functionality in Pablo Software Solutions Quick 'n Easy FTP Server Professional and Lite, probably 3.0, allows remote authenticated users to execute arbitrary code by sending a command with a long argument, which triggers a buffer overflow when an admin selects the Logging section in the FTP server main window. NOTE: the original researcher claims that the vendor disputes this issue.

Affected configurations

NVD

Node

pablo_software_solutionsquick_n_easy_ftp_serverMatch3.0lite

pablo_software_solutionsquick_n_easy_ftp_serverMatch3.0professional

References

securityreason.com/securityalert/788

www.osvdb.org/25235

www.securityfocus.com/archive/1/431920/100/0/threaded

www.securityfocus.com/bid/17681

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

7.7 High

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.9%

JSON

Related for NVD:CVE-2006-2027

cve2 prion1 cvelist2 nvd1