Vulnerabilities > CVE-2006-2961 - Commands Remote Buffer Overflow vulnerability in ACLogic CesarFTP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Stack-based buffer overflow in CesarFTP 0.99g and earlier allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long MKD command. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description CesarFTP 0.99g (MKD) Remote Buffer Overflow Exploit. CVE-2006-2961. Remote exploit for windows platform id EDB-ID:1906 last seen 2016-01-31 modified 2006-06-12 published 2006-06-12 reporter h07 source https://www.exploit-db.com/download/1906/ title CesarFTP 0.99g - MKD Remote Buffer Overflow Exploit description CesarFTP 0.99g - XCWD Denial of Service. CVE-2006-2961. Dos exploit for windows platform id EDB-ID:39274 last seen 2016-02-04 modified 2016-01-19 published 2016-01-19 reporter Irving Aguilar source https://www.exploit-db.com/download/39274/ title CesarFTP 0.99g - XCWD Denial of Service description Cesar FTP 0.99g MKD Command Buffer Overflow. CVE-2006-2961. Remote exploit for windows platform id EDB-ID:16713 last seen 2016-02-02 modified 2011-02-23 published 2011-02-23 reporter metasploit source https://www.exploit-db.com/download/16713/ title Cesar FTP 0.99g - MKD Command Buffer Overflow
Metasploit
| description | This module exploits a stack buffer overflow in the MKD verb in CesarFTP 0.99g. You must have valid credentials to trigger this vulnerability. Also, you only get one chance, so choose your target carefully. |
| id | MSF:EXPLOIT/WINDOWS/FTP/CESARFTP_MKD |
| last seen | 2020-01-13 |
| modified | 2017-07-24 |
| published | 2006-11-12 |
| references | |
| reporter | Rapid7 |
| source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/ftp/cesarftp_mkd.rb |
| title | Cesar FTP 0.99g MKD Command Buffer Overflow |
Nessus
| NASL family | FTP |
| NASL id | CESARFTP_OVERFLOWS.NASL |
| description | The remote host is running CesarFTP, an FTP server for Windows systems. There are multiple flaws in this version of CesarFTP that could allow an attacker to execute arbitrary code on this host, or simply to disable this server remotely. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 11755 |
| published | 2003-06-18 |
| reporter | This script is Copyright (C) 2003-2018 and is owned by Tenable, Inc. or an Affiliate thereof. |
| source | https://www.tenable.com/plugins/nessus/11755 |
| title | CesarFTP Multiple Vulnerabilities (OF, File Access, more) |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/83077/cesarftp_mkd.rb.txt |
| id | PACKETSTORM:83077 |
| last seen | 2016-12-05 |
| published | 2009-11-26 |
| reporter | MC |
| source | https://packetstormsecurity.com/files/83077/Cesar-FTP-0.99g-MKD-Command-Buffer-Overflow.html |
| title | Cesar FTP 0.99g MKD Command Buffer Overflow |