Lucene search

[email protected]NVD:CVE-2006-2180

HistoryMay 04, 2006 - 12:38 p.m.

CVE-2006-2180

2006-05-0412:38:00

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

Confidence

High

EPSS

0.201

Percentile

96.4%

JSON

Buffer overflow in Golden FTP Server Pro 2.70 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via a long argument to the (1) NLST or (2) APPE commands, as demonstrated by the Infigo FTPStress Fuzzer.

Affected configurations

Nvd

Node

kmint21_softwaregolden_ftp_serverMatch1.32b

kmint21_softwaregolden_ftp_serverMatch2.70

VendorProductVersionCPE
kmint21_softwaregolden_ftp_server1.32bcpe:2.3:a:kmint21_software:golden_ftp_server:1.32b:*:*:*:*:*:*:*
kmint21_softwaregolden_ftp_server2.70cpe:2.3:a:kmint21_software:golden_ftp_server:2.70:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
kmint21_software	golden_ftp_server	1.32b	cpe:2.3:a:kmint21_software:golden_ftp_server:1.32b:::::::*
kmint21_software	golden_ftp_server	2.70	cpe:2.3:a:kmint21_software:golden_ftp_server:2.70:::::::*

References

archives.neohapsis.com/archives/bugtraq/2006-05/0139.html

marc.info/?l=bugtraq&m=114658586018818&w=2

secunia.com/advisories/19917

www.infigo.hr/en/in_focus/tools

www.infigo.hr/hr/in_focus/advisories/INFIGO-2006-05-03

www.osvdb.org/25217

www.securityfocus.com/bid/17801

www.vupen.com/english/advisories/2006/1640

exchange.xforce.ibmcloud.com/vulnerabilities/26195

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

Confidence

High

EPSS

0.201

Percentile

96.4%

JSON

Related for NVD:CVE-2006-2180

cvelist1 exploitdb1 prion1 cve1 nessus1