SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

CVE

CVE-2006-2180

Buffer overflow in Golden FTP Server Pro 2.70 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via a long argument to the (1) NLST or (2) APPE commands, as demonstrated by the Infigo FTPStress Fuzzer.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.4
Exploit Score: 10.0
Impact Score: 4.9

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: PARTIAL
Availability: PARTIAL

Reference:

BID-17801

SECUNIA-19917

http://marc.info/?l=bugtraq&m=114658586018818&w=2

http://archives.neohapsis.com/archives/bugtraq/2006-05/0139.html

OSVDB-25217

ADV-2006-1640

goldenftp-nlst-appe-bo(26195)

http://www.infigo.hr/en/in_focus/tools

http://www.infigo.hr/hr/in_focus/advisories/INFIGO-2006-05-03


30430



423868



247768



909



194555



282