Vulnerabilities > CVE-2006-6624 - Remote Denial of Service vulnerability in Sambar Server 6.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The FTP Server in Sambar Server 6.4 allows remote authenticated users to cause a denial of service (application crash) via a long series of "./" sequences in the SIZE command.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Sambar FTP Server 6.4 (SIZE) Remote Denial of Service Exploit. CVE-2006-6624. Dos exploit for windows platform |
file | exploits/windows/dos/2934.php |
id | EDB-ID:2934 |
last seen | 2016-01-31 |
modified | 2006-12-15 |
platform | windows |
port | |
published | 2006-12-15 |
reporter | rgod |
source | https://www.exploit-db.com/download/2934/ |
title | Sambar FTP Server 6.4 SIZE Remote Denial of Service Exploit |
type | dos |
Nessus
NASL family | FTP |
NASL id | SAMBAR_FTP_SIZE_DOS.NASL |
description | The remote host appears to be using Sambar Server, a multi-service application for Windows and Linux. The version of Sambar installed on the remote host crashes when its FTP server component attempts to process a specially crafted SIZE command. An authenticated, remote attacker can exploit this flaw to deny service to legitimate users. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 24020 |
published | 2007-01-17 |
reporter | This script is Copyright (C) 2007-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/24020 |
title | Sambar FTP Server Malformed SIZE Command DoS |
code |
|
References
- http://secunia.com/advisories/23376
- http://securitytracker.com/id?1017393
- http://www.securityfocus.com/bid/21617
- http://www.securityfocus.com/data/vulnerabilities/exploits/21617.php
- http://www.vupen.com/english/advisories/2006/5041
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30920
- https://www.exploit-db.com/exploits/2934