Vulnerability Details CVE-2006-5826
Buffer overflow in Texas Imperial Software WFTPD Pro Server 3.23.1.1 allows remote authenticated users to execute arbitrary code or cause a denial of service (application crash) via crafted APPE commands that contain "/" (slash) or "\" (backslash) characters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.174
EPSS Ranking 94.8%
CVSS Severity
CVSS v2 Score 5.8
References
- http://marc.info/?l=full-disclosure&m=116289234522958&w=2
- http://marc.info/?l=full-disclosure&m=116295408114746&w=2
- http://securityreason.com/securityalert/1837
- http://securitytracker.com/id?1017173
- http://www.securityfocus.com/archive/1/450851/100/0/threaded
- http://www.securityfocus.com/bid/20942
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30079
- https://www.exploit-db.com/exploits/2734
- http://marc.info/?l=full-disclosure&m=116289234522958&w=2
- http://marc.info/?l=full-disclosure&m=116295408114746&w=2
- http://securityreason.com/securityalert/1837
- http://securitytracker.com/id?1017173
- http://www.securityfocus.com/archive/1/450851/100/0/threaded
- http://www.securityfocus.com/bid/20942
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30079
- https://www.exploit-db.com/exploits/2734
Products affected by CVE-2006-5826
-
cpe:2.3:a:texas_imperial_software:wftpd:3.23.1.1