CVE-2006-0705
Reflection for Secure IT Server - Authenticated Remote Code Execution via Format String Vulnerability
Title source: llmDescription
Format string vulnerability in a logging function as used by various SFTP servers, including (1) AttachmateWRQ Reflection for Secure IT UNIX Server before 6.0.0.9, (2) Reflection for Secure IT Windows Server before 6.0 build 38, (3) F-Secure SSH Server for Windows before 5.3 build 35, (4) F-Secure SSH Server for UNIX 3.0 through 5.0.8, (5) SSH Tectia Server 4.3.6 and earlier and 4.4.0, and (6) SSH Shell Server 3.2.9 and earlier, allows remote authenticated users to execute arbitrary commands via unspecified vectors, involving crafted filenames and the stat command.
References (15)
Core 15
Core References
Patch vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1015619
Patch x_refsource_confirm
http://support.wrq.com/techdocs/1882.html
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/24516
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/29552
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24651
Patch, US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/419241
Mailing List vendor-advisory
x_refsource_hp
http://marc.info/?l=bugtraq&m=120654385125315&w=2
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18828
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://security.gentoo.org/glsa/glsa-200703-13.xml
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0555
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2006/0554
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/16625
Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/1008/references
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/16640
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/18843
Scores
EPSS
0.1019
EPSS Percentile
95.1%
Details
CWE
CWE-134
Status
published
Products (19)
attachmatewrq/reflection_for_secure_it_server
6.0 (2 CPE variants)
f-secure/f-secure_ssh_server
3.0.0
f-secure/f-secure_ssh_server
3.0.1 (2 CPE variants)
f-secure/f-secure_ssh_server
3.0.2
f-secure/f-secure_ssh_server
3.0.3
f-secure/f-secure_ssh_server
3.0.4
f-secure/f-secure_ssh_server
3.0.5
f-secure/f-secure_ssh_server
3.0.6
f-secure/f-secure_ssh_server
3.0.7
f-secure/f-secure_ssh_server
3.0.8
... and 9 more
Published
Feb 15, 2006
Tracked Since
Feb 18, 2026