CVE-2006-6576
CVE-2006-6576
Vexday Risk Score
50Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS —EPSS 67.0%KEV nãoPoC públicaNuclei —Metasploit simPatch —
Lifecycle
15 Dec 2006Published on NVD
23 Jan 2011Metasploit module available
23 Jan 2011Public PoC
Weaponization speed
1499 daysto first PoC
1499 daysto Metasploit module
Recommendation: Plan a near-term fix — a public PoC already exists.
Heap-based buffer overflow in Golden FTP Server (goldenftpd) 1.92 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long PASS command. NOTE: it was later reported that 4.70 is also affected. NOTE: the USER vector is already covered by CVE-2005-0634.
Affected products
n/a · n/apublic PoCs found — 5
cve_referencepacketstormsecurity.com/files/161711/Golden-FTP-Server-4.70-Buffer-Overflow.htmlunverifiedcve_referencewww.exploit-db.com/exploits/16036unverifiedexploitdbwww.exploit-db.com/exploits/16036unverifiedexploitdbwww.exploit-db.com/exploits/49629unverifiedexploitdbwww.exploit-db.com/exploits/17355unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
References
http://packetstormsecurity.com/files/161711/Golden-FTP-Server-4.70-Buffer-Overflow.htmlhttp://retrogod.altervista.org/golden_heap.htmlhttp://secunia.com/advisories/23323http://www.exploit-db.com/exploits/16036http://www.securityfocus.com/bid/45924http://www.securityfocus.com/bid/45957http://www.vupen.com/english/advisories/2006/4936