CVE-2006-6576

Golden FTP Server <1.92 - Buffer Overflow

Title source: llm

Description

Heap-based buffer overflow in Golden FTP Server (goldenftpd) 1.92 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long PASS command. NOTE: it was later reported that 4.70 is also affected. NOTE: the USER vector is already covered by CVE-2005-0634.

Exploits (4)

exploitdb WORKING POC VERIFIED

by 1F98D · pythonremotewindows

https://www.exploit-db.com/exploits/49629

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/17355

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by cd1zz & iglesiasgg · rubyremotewindows

https://www.exploit-db.com/exploits/16036

View Code ZIP pw:eip

metasploit WORKING POC NORMAL

by Craig Freyman, bannedit · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/ftp/goldenftp_pass_bof.rb

View Code ZIP pw:eip

References (7)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/161711/Golden-FTP-Server-4.70-Buffer-Overflow.html

[Broken Link] http://retrogod.altervista.org/golden_heap.html

[Third Party Advisory] http://secunia.com/advisories/23323

[Exploit, Third Party Advisory, VDB Entry] http://www.exploit-db.com/exploits/16036

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/45924

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/45957

[Third Party Advisory] http://www.vupen.com/english/advisories/2006/4936

Scores

EPSS 0.8858

EPSS Percentile 99.5%

Details

CWE

CWE-787

Status published

Products (1)

goldenftpserver/golden_ftp_server 1.92

Published Dec 15, 2006

Tracked Since Feb 18, 2026