Summary
Detail | |||
---|---|---|---|
Vendor | gene6 | First view | 1999-11-17 |
Product | g6 Ftp Server | Last view | 2006-05-04 |
Version | Type | Application | |
Update | |||
Edition | |||
Language | |||
Sofware Edition | |||
Target Software | |||
Target Hardware | |||
Other |
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
Related : CVE
Date | Alert | Description | |
---|---|---|---|
7.5 | 2006-05-04 | CVE-2006-2172 | Buffer overflow in Gene6 FTP Server 3.1.0 allows remote authenticated attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long argument to (1) MKD or (2) XMKD, as demonstrated by the Infigo FTPStress Fuzzer. |
2.1 | 2005-03-07 | CVE-2005-0690 | Gene6 FTP Server does not properly restrict access to the control console, which allows local users to modify the server configuration and gain privileges, as demonstrated by defining a SITE command. |
5 | 2001-06-18 | CVE-2001-0264 | Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows remote attackers to obtain NETBIOS credentials by requesting information on a file that is in a network share, which causes the server to send the credentials to the host that owns the share, and allows the attacker to sniff the connection. |
7.5 | 2001-06-18 | CVE-2001-0263 | Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) allows attackers to read file attributes outside of the web root via the (1) SIZE and (2) MDTM commands when the "show relative paths" option is not enabled. |
5 | 1999-11-17 | CVE-1999-1519 | Gene6 G6 FTP Server 2.0 allows a remote attacker to cause a denial of service (resource exhaustion) via a long (1) user name or (2) password. |
Open Source Vulnerability Database (OSVDB)
id | Description |
---|---|
25238 | Gene6 FTP Server Multiple Command Remote Overflows |
14602 | Gene6 FTP Server Local Privilege Escalation |
13856 | Gene6 G6 FTP Server File Request NETBIOS Credential Exposure |
13855 | Gene6 G6 FTP Server Multiple Command Traversal Arbitrary File Access |
13554 | Gene6 G6 FTP Server Multiple Login Field DoS |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | PASS overflow attempt RuleID : 1972-community - Type : PROTOCOL-FTP - Revision : 32 |
2014-01-10 | PASS overflow attempt RuleID : 1972 - Type : PROTOCOL-FTP - Revision : 32 |
2014-01-10 | USER overflow attempt RuleID : 1734-community - Type : PROTOCOL-FTP - Revision : 50 |
2014-01-10 | USER overflow attempt RuleID : 1734 - Type : PROTOCOL-FTP - Revision : 50 |
Nessus® Vulnerability Scanner
id | Description |
---|---|
2006-05-04 | Name: The remote FTP server is affected by buffer overflow flaws. File: gene6_380.nasl - Type: ACT_GATHER_INFO |