Vulnerability Details : CVE-2006-5000
Multiple buffer overflows in WS_FTP Server 5.05 before Hotfix 1, and possibly other versions down to 5.0, have unknown impact and remote authenticated attack vectors via the (1) XCRC, (2) XMD5, and (3) XSHA1 commands. NOTE: in the early publication of this identifier on 20060926, the description was used for the wrong issue.
Products affected by CVE-2006-5000
- cpe:2.3:a:ipswitch:ws_ftp_server:5.03:*:*:*:*:*:*:*
- cpe:2.3:a:ipswitch:ws_ftp_server:5.02:*:*:*:*:*:*:*
- cpe:2.3:a:ipswitch:ws_ftp_server:5.05:*:*:*:*:*:*:*
- cpe:2.3:a:progress:ws_ftp_server:5.0.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-5000
96.58%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 100 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-5000
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.5
|
MEDIUM | AV:N/AC:L/Au:S/C:P/I:P/A:P |
8.0
|
6.4
|
NIST |
References for CVE-2006-5000
-
http://www.zerodayinitiative.com/advisories/ZDI-06-029.html
ZDI-06-029 | Zero Day InitiativeVendor Advisory
-
http://www.securityfocus.com/archive/1/447077/100/0/threaded
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/41829
WS_FTP multiple commands buffer overflow CVE-2006-5000 Vulnerability Report
-
http://securitytracker.com/id?1016935
-
http://www.ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp
Progress Community - The One Place for all Our Customers, Partners & EmployeesPatch
Jump to