CyberSec.Space Logo
Back to CVE Browser

CVE-2006-6183

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1380%
EPSS Percentile32.85th
PublishedDec 1, 2006
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple stack-based buffer overflows in 3Com 3CTftpSvc 2.0.1, and possibly earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a long mode field (aka transporting mode) in a (1) GET or (2) PUT command.

Affected Platforms (CPE)

πŸ“¦
3com

3ctftpsvc

<= 2.0.1

References & Advisories

πŸ”— http://secunia.com/advisories/23113
πŸ”— http://securityreason.com/securityalert/1930
πŸ”— http://www.securityfocus.com/archive/1/452754/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/21301
πŸ”— http://www.securityfocus.com/bid/21322
πŸ”— http://www.vupen.com/english/advisories/2006/4738
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/30545
πŸ”— http://secunia.com/advisories/23113

Related Vulnerabilities

CVE-2006-623510.0

A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to ...

CVE-2006-610210.0

Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X ser...

CVE-2006-446110.0

Paessler IPCheck Server Monitor before 5.3.3.639/640 does not properly implement a "list of acceptable host IP addresses in the pr...

CVE-2006-011910.0

Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 have unknown impact and attack vectors, due...