Vulnerability Description
Gene6 FTP Server does not properly restrict access to the control console, which allows local users to modify the server configuration and gain privileges, as demonstrated by defining a SITE command.
CVSS Score
2.1
LOW
AV:L/AC:L/Au:N/C:N/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gene6 | G6 Ftp Server | 2.0 |
References
- http://marc.info/?l=bugtraq&m=111022496826680&w=2
- http://marc.info/?l=bugtraq&m=111026585431080&w=2
- http://secunia.com/advisories/14436Vendor Advisory
- http://secway.org/Advisory/ad20050303.txtVendor Advisory
- http://www.securityfocus.com/bid/12739PatchVendor Advisory
- http://marc.info/?l=bugtraq&m=111022496826680&w=2
- http://marc.info/?l=bugtraq&m=111026585431080&w=2
- http://secunia.com/advisories/14436Vendor Advisory
- http://secway.org/Advisory/ad20050303.txtVendor Advisory
- http://www.securityfocus.com/bid/12739PatchVendor Advisory
FAQ
What is CVE-2005-0690?
CVE-2005-0690 is a vulnerability with a CVSS score of 2.1 (LOW). Gene6 FTP Server does not properly restrict access to the control console, which allows local users to modify the server configuration and gain privileges, as demonstrated by defining a SITE command.
How severe is CVE-2005-0690?
CVE-2005-0690 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-0690?
Check the references section above for vendor advisories and patch information. Affected products include: Gene6 G6 Ftp Server.