PT-2006-4702 · Unknown · Quick 'N Easy Ftp Server

Published

2006-07-25

Updated

2017-07-20

CVE-2006-3844

CVSS v2.0

6.5

Medium

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Quick 'n Easy FTP Server version 3.0

Description A buffer overflow issue exists, allowing remote authenticated users to execute arbitrary commands by providing a long argument to the "LIST" command.

Recommendations For Quick 'n Easy FTP Server version 3.0, consider restricting access to the LIST command until a patch is available. As a temporary workaround, limit the length of arguments that can be passed to the LIST command to prevent exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-3844

Affected Products

Quick 'N Easy Ftp Server

PT-2006-4702 · Unknown · Quick 'N Easy Ftp Server

CVE-2006-3844

Related Identifiers

Affected Products

References · 7