Vulnerabilities > CVE-2006-2225 - Unspecified vulnerability in Dxmsoft XM Easy Personal FTP Server

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
dxmsoft
nessus
exploit available
NVD
Published: 2006-05-05
Updated: 2024-11-21

Summary

Buffer overflow in XM Easy Personal FTP Server 4.3 and earlier allows remote attackers to execute arbitrary code, probably via a USER command with a long username.

Vulnerable Configurations

Part Description Count
Application
Dxmsoft
1

Exploit-Db

descriptionXM Easy Personal FTP Server. CVE-2006-2225. Dos exploit for windows platform
idEDB-ID:1748
last seen2016-01-31
modified2006-05-04
published2006-05-04
reporterrewterz
sourcehttps://www.exploit-db.com/download/1748/
titleXM Easy Personal FTP Server <= 4.3 USER Remote Buffer Overflow PoC

Nessus

NASL familyFTP
NASL idXM_EASY_FTP_USER_OVERFLOW.NASL
descriptionThe remote host appears to be using XM Easy FTP Server, a personal FTP server for Windows. The version of XM Easy FTP Server installed on the remote host contains a buffer overflow vulnerability that can be exploited by an unauthenticated user with a specially crafted USER command to crash the affected application or execute arbitrary code on the affected host.
last seen2020-06-01
modified2020-06-02
plugin id21338
published2006-05-11
reporterThis script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
sourcehttps://www.tenable.com/plugins/nessus/21338
titleXM Easy FTP Server USER Command Buffer Overflow

References