PT-2006-7325 · Bolintech · Bolintech Dream Ftp Server

Intel

Published

2006-12-26

Updated

2017-10-19

CVE-2006-6724

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: BolinTech Dream FTP Server version 1.02

Description: The issue allows remote authenticated users, including anonymous users, to cause a denial of service, resulting in an application crash. This can be achieved by sending a certain invalid PORT command.

Recommendations: For BolinTech Dream FTP Server version 1.02, consider restricting access to the FTP server until a patch is available, and avoid using the invalid PORT command to prevent the application crash.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-6724

Affected Products

Bolintech Dream Ftp Server

PT-2006-7325 · Bolintech · Bolintech Dream Ftp Server

CVE-2006-6724

Related Identifiers

Affected Products

References · 4