Description
Multiple buffer overflows in WS_FTP Server 5.05 before Hotfix 1, and possibly other versions down to 5.0, have unknown impact and remote authenticated attack vectors via the (1) XCRC, (2) XMD5, and (3) XSHA1 commands. NOTE: in the early publication of this identifier on 20060926, the description was used for the wrong issue.
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/41829
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/447077/100/0/threaded
Vendor Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-06-029.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1016935
Patch x_refsource_confirm
http://www.ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp
Scores
EPSS
0.7907
EPSS Percentile
99.1%
Details
Status
published
Products (4)
ipswitch/ws_ftp_server
5.02
ipswitch/ws_ftp_server
5.03
ipswitch/ws_ftp_server
5.05
progress/ws_ftp_server
5.0.2
Published
Sep 26, 2006
Tracked Since
Feb 18, 2026