CVE-2006-6576
CVE-2006-6576
Heap-based buffer overflow in Golden FTP Server (goldenftpd) 1.92 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long PASS command. NOTE: it was later reported that 4.70 is also affected. NOTE: the USER vector is already covered by CVE-2005-0634.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 5
cve_referencepacketstormsecurity.com/files/161711/Golden-FTP-Server-4.70-Buffer-Overflow.htmlnão verificadocve_referencewww.exploit-db.com/exploits/16036não verificadoexploitdbwww.exploit-db.com/exploits/16036não verificadoexploitdbwww.exploit-db.com/exploits/49629não verificadoexploitdbwww.exploit-db.com/exploits/17355não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://packetstormsecurity.com/files/161711/Golden-FTP-Server-4.70-Buffer-Overflow.htmlhttp://retrogod.altervista.org/golden_heap.htmlhttp://secunia.com/advisories/23323http://www.exploit-db.com/exploits/16036http://www.securityfocus.com/bid/45924http://www.securityfocus.com/bid/45957http://www.vupen.com/english/advisories/2006/4936