CyberSec.Space Logo
返回 CVE 浏览器

CVE-2006-7094

HIGH
8.5
CVSS Severity Score
EPSS Score0.1030%
EPSS Percentile40.94th
Published2007年3月2日
Last Modified2026年4月23日

Vulnerability Description

ftpd, as used by Gentoo and Debian Linux, sets the gid to the effective uid instead of the effective group id before executing /bin/ls, which allows remote authenticated users to list arbitrary directories with the privileges of gid 0 and possibly enable additional attack vectors.

Affected Platforms (CPE)

📦
Ftpd

Ftpd

All versions

References & Advisories

🔗 http://bugs.debian.org/384454
🔗 http://bugs.gentoo.org/show_bug.cgi?id=155317
🔗 http://osvdb.org/34242
🔗 http://packages.qa.debian.org/l/linux-ftpd/news/20061125T181702Z.html
🔗 http://securityreason.com/securityalert/2330
🔗 http://www.securityfocus.com/archive/1/460742/100/0/threaded
🔗 http://bugs.debian.org/384454
🔗 http://bugs.gentoo.org/show_bug.cgi?id=155317

相关漏洞威胁

CVE-1999-036810.0

Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.

CVE-1999-008210.0

CWD ~root command in ftpd allows root access.

CVE-1999-066110.0

A system is running a version of software that was replaced with a Trojan Horse at one of its distribution points, such as (1) TCP...

CVE-1999-087810.0

Buffer overflow in WU-FTPD and related FTP servers allows remote attackers to gain root privileges via MAPPING_CHDIR.