Buffer Underflow Issue in ProFTPD by ProFTPD Developers
CVE-2006-6171

Currently unrated

Key Information:

Vendor: Proftpd Project
Status: Proftpd
Vendor: CVE Published:; 30 November 2006

🔔 Create Proftpd Project Vulnerability Alert

What is CVE-2006-6171?

The ProFTPD server versions up to 1.3.0a are impacted by a buffer underflow issue due to improper setting of the buffer size limit when 'CommandBufferSize' is defined in the configuration file. This could lead to unexpected behavior within the server. However, it is important to note that ProFTPD developers challenge this classification as a vulnerability, asserting that the memory location undergoes an overwrite before the function's further utilization.

References

http://www.debian.org/security/2006/dsa-1222

vendor-advisoryx_refsource_DEBIAN

http://proftp.cvs.sourceforge.net/proftp/proftpd/src/main...

x_refsource_MISC

http://www.debian.org/security/2006/dsa-1218

vendor-advisoryx_refsource_DEBIAN

Timeline

Vulnerability published
Nov 30, 2006
Vulnerability Reserved
Nov 30, 2006

JSON