PT-2006-7178 · Golden · Golden Ftp Server

Cd1Zz

Published

2006-12-15

Updated

2021-03-16

CVE-2006-6576

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Golden FTP Server versions 1.92 through 4.70

Description A heap-based buffer overflow issue allows remote attackers to cause a denial of service, potentially leading to application crashes, and possibly execute arbitrary code via a long PASS command.

Recommendations For Golden FTP Server versions 1.92 through 4.70, consider updating to a version that is not affected by this issue, as a temporary workaround, restrict access to the PASS command to minimize the risk of exploitation.

Exploit

Fix

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2006-6576

Affected Products

Golden Ftp Server

PT-2006-7178 · Golden · Golden Ftp Server

CVE-2006-6576

Weakness Enumeration

Related Identifiers

Affected Products

References · 12