Stack-Based Buffer Overflow in ProFTPD Mod_Ctrls by The ProFTPD Project
CVE-2006-6563

Currently unrated

Key Information:

Vendor: Proftpd Project
Status: Proftpd
Vendor: CVE Published:; 15 December 2006

🔔 Create Proftpd Project Vulnerability Alert

What is CVE-2006-6563?

A vulnerability exists in the mod_ctrls module of ProFTPD, where a stack-based buffer overflow can occur within the pr_ctrls_recv_request function. The flaw stems from handling a large reqarglen length, allowing local users to potentially execute arbitrary code on the host machine. This exploit poses a significant risk, as it enables an attacker to manipulate system functions and gain unauthorized access or control.

References

http://www.securityfocus.com/bid/21587

vdb-entryx_refsource_BID

http://www.mandriva.com/security/advisories?name=MDKSA-20...

vendor-advisoryx_refsource_MANDRIVA

http://www.securityfocus.com/archive/1/454320/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Dec 15, 2006
Vulnerability Reserved
Dec 14, 2006

JSON