Vulnerabilities > CVE-2006-3768 - Buffer Overflow vulnerability in Intervations Filecopa 1.01
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
Integer underflow in filecpnt.exe in FileCOPA FTP Server 1.01 before 2006-07-21 allow remote authenticated users to execute arbitrary code via a long argument to the (1) CWD, (2) DELE, (3) MDTM, and (4) MKD commands, which triggers a stack-based buffer overflow.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- http://secunia.com/advisories/21097
- http://secunia.com/secunia_research/2006-55/advisory/
- http://securityreason.com/securityalert/1300
- http://www.kb.cert.org/vuls/id/713092
- http://www.kb.cert.org/vuls/id/RGII-6TYN6M
- http://www.osvdb.org/27486
- http://www.securityfocus.com/archive/1/441207/100/0/threaded
- http://www.securityfocus.com/bid/19153
- http://www.vupen.com/english/advisories/2006/2960
- https://exchange.xforce.ibmcloud.com/vulnerabilities/27941