CyberSec.Space Logo
CVEブラウザに戻る

CVE-2006-1253

HIGH
7.5
CVSS Severity Score
EPSS Score0.1520%
EPSS Percentile33.11th
Published2006年3月19日
Last Modified2026年4月16日

Vulnerability Description

Unspecified vulnerability in glFTPd before 2.01 RC5 allows remote attackers to bypass IP checks via a crafted DNS hostname, possibly a hostname that appears to be an IP address.

Affected Platforms (CPE)

📦
Glftpd

Glftpd

= 1.18
📦
Glftpd

Glftpd

= 1.19
📦
Glftpd

Glftpd

= 1.20
📦
Glftpd

Glftpd

= 1.21
📦
Glftpd

Glftpd

= 1.22
📦
Glftpd

Glftpd

= 1.23
📦
Glftpd

Glftpd

= 1.24
📦
Glftpd

Glftpd

= 1.25
📦
Glftpd

Glftpd

= 1.26
📦
Glftpd

Glftpd

= 1.27
📦
Glftpd

Glftpd

= 1.28
📦
Glftpd

Glftpd

= 1.29
📦
Glftpd

Glftpd

= 1.29.1
📦
Glftpd

Glftpd

= 1.30
📦
Glftpd

Glftpd

= 1.31
📦
Glftpd

Glftpd

= 1.32
📦
Glftpd

Glftpd

= 2.0
📦
Glftpd

Glftpd

= 2.0_rc1
📦
Glftpd

Glftpd

= 2.0_rc2
📦
Glftpd

Glftpd

= 2.0_rc3
📦
Glftpd

Glftpd

= 2.0_rc4
📦
Glftpd

Glftpd

= 2.0_rc5
📦
Glftpd

Glftpd

= 2.0_rc6
📦
Glftpd

Glftpd

= 2.0_rc7
📦
Glftpd

Glftpd

= 2.01_rc1
📦
Glftpd

Glftpd

= 2.01_rc2
📦
Glftpd

Glftpd

= 2.01_rc3
📦
Glftpd

Glftpd

= 2.01_rc4

References & Advisories

🔗 http://secunia.com/advisories/19221
🔗 http://www.glftpd.com/files/docs/changelog
🔗 http://www.securityfocus.com/bid/17118
🔗 http://secunia.com/advisories/19221
🔗 http://www.glftpd.com/files/docs/changelog
🔗 http://www.securityfocus.com/bid/17118

関連する脆弱性情報

CVE-2000-004010.0

glFtpD allows local users to gain privileges via metacharacters in the SITE ZIPCHK command.

CVE-2000-058710.0

The privpath directive in glftpd 1.18 allows remote attackers to bypass access restrictions for directories by using the file name...

CVE-2021-316457.5

An issue was discovered in glFTPd 2.11a that allows remote attackers to cause a denial of service via exceeding the connection lim...

CVE-2000-00387.5

glFtpD includes a default glftpd user account with a default password and a UID of 0.