CyberSec.Space Logo
Back to CVE Browser

CVE-2006-5789

MEDIUM
4.0
CVSS Severity Score
EPSS Score0.0600%
EPSS Percentile1.65th
PublishedNov 7, 2006
Last ModifiedApr 23, 2026

Vulnerability Description

War FTP Daemon (WarFTPd) 1.82.00-RC11 allows remote authenticated users to cause a denial of service via a large number of "%s" format strings in (1) CWD, (2) CDUP, (3) DELE, (4) NLST, (5) LIST, (6) SIZE, and possibly other commands. NOTE: it is possible that vector 1 is an off-by-one variant or incomplete fix of CVE-2005-0312.

Affected Platforms (CPE)

πŸ“¦
Jgaa

Warftpd

= 1.82.00_rc11

References & Advisories

πŸ”— http://secunia.com/advisories/22755
πŸ”— http://securityreason.com/securityalert/1832
πŸ”— http://securitytracker.com/id?1017174
πŸ”— http://www.securityfocus.com/archive/1/450804/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/20944
πŸ”— http://www.vupen.com/english/advisories/2006/4398
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/30077
πŸ”— http://secunia.com/advisories/22755

Related Vulnerabilities

CVE-2013-227810.0

Unspecified vulnerability in War FTP Daemon (warftpd) 1.82, when running as a Windows service, allows remote attackers to cause a ...

CVE-2006-21716.4

Buffer overflow in WDM.exe in WarFTPD allows remote attackers to execute arbitrary code via unspecified arguments, as demonstrated...

CVE-2009-51414.0

Format string vulnerability in War FTP Daemon (warftpd) 1.82 RC 12 allows remote authenticated users to cause a denial of service ...

CVE-2005-03122.1

WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service (access violation)...