Vulnerability Description
Buffer overflow in Tiny FTPd 1.4 and earlier allows remote attackers to cause a denial of service (daemon crash) via a long USER command, a different vector than CVE-2000-0133.
CVSS Score
7.8
HIGH
AV:N/AC:L/Au:N/C:N/I:N/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| H. Nomura | Tiny Ftpd | <= 1.4 |
References
- http://www.osvdb.org/25767
- http://www.ph4nt0m.org/bbs/showthread.php?threadid=30080&goto=nextnewest
- http://www.securiteam.com/exploits/5LP032KIKC.htmlExploit
- https://www.exploit-db.com/exploits/1758
- http://www.osvdb.org/25767
- http://www.ph4nt0m.org/bbs/showthread.php?threadid=30080&goto=nextnewest
- http://www.securiteam.com/exploits/5LP032KIKC.htmlExploit
- https://www.exploit-db.com/exploits/1758
FAQ
What is CVE-2006-7007?
CVE-2006-7007 is a vulnerability with a CVSS score of 7.8 (HIGH). Buffer overflow in Tiny FTPd 1.4 and earlier allows remote attackers to cause a denial of service (daemon crash) via a long USER command, a different vector than CVE-2000-0133.
How severe is CVE-2006-7007?
CVE-2006-7007 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-7007?
Check the references section above for vendor advisories and patch information. Affected products include: H. Nomura Tiny Ftpd.