CVE-2006-0355 - Helmsman Research (aka CoolUtils) HomeFtp 1.1 allows remote attackers to cause an unspecified denial

CVE-2006-0355

Summary

Helmsman Research (aka CoolUtils) HomeFtp 1.1 allows remote attackers to cause an unspecified denial of service via a long USER command combined with a long PASS command and an NLST command.

References

http://securityreason.com/securityalert/350
http://www.kapda.ir/advisory-202.html
http://www.securityfocus.com/archive/1/421869/100/0/threaded
http://www.securityfocus.com/bid/16238
https://exchange.xforce.ibmcloud.com/vulnerabilities/24152

Vulnerable Configurations

cpe:2.3:a:helmsman_research:homeftp:1.1:*:*:*:*:*:*:*
cpe:2.3:a:helmsman_research:homeftp:1.1:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 19-10-2018 - 15:44)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	16238
bugtraq	20060114 [KAPDA::#21] - HomeFtp v1.1 Denial of Service
misc	http://www.kapda.ir/advisory-202.html
sreason	350
xf	homeftp-long-command-dos(24152)

Last major update

19-10-2018 - 15:44

Published

22-01-2006 - 20:03

Last modified

19-10-2018 - 15:44