CVE-2006-2173

NUCLEI

Filezilla Server - Buffer Overflow

Title source: rule

Description

Buffer overflow in FileZilla FTP Server 2.2.22 allows remote authenticated attackers to cause a denial of service and possibly execute arbitrary code via a long (1) PORT or (2) PASS followed by the MLSD command, or (2) the remote server interface, as demonstrated by the Infigo FTPStress Fuzzer.

Nuclei Templates (1)

FileZilla FTP Server 2.2.22 - Buffer Overflow

MEDIUMVERIFIEDby pussycat0x

Shodan: product:"FileZilla"

References (7)

[Third Party Advisory] http://archives.neohapsis.com/archives/bugtraq/2006-05/0139.html

[Mailing List] http://marc.info/?l=bugtraq&m=114658586018818&w=2

[Exploit] http://www.infigo.hr/en/in_focus/tools

[Various Sources] http://www.infigo.hr/hr/in_focus/advisories/INFIGO-2006-05-03

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/17802

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/26303

[Third Party Advisory, VDB Entry] http://www.osvdb.org/25221

Scores

EPSS 0.0039

EPSS Percentile 59.8%

Details

Status published

Products (1)

filezilla/filezilla_server

Published May 04, 2006

Tracked Since Feb 18, 2026