Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2006-6171

EPSS 4.78% · P90
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2006-6171

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
ProFTPD 1.3.0a and earlier does not properly set the buffer size limit when CommandBufferSize is specified in the configuration file, which leads to an off-by-two buffer underflow. NOTE: in November 2006, the role of CommandBufferSize was originally associated with CVE-2006-5815, but this was an error stemming from a vague initial disclosure. NOTE: ProFTPD developers dispute this issue, saying that the relevant memory location is overwritten by assignment before further use within the affected function, so this is not a vulnerability
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
ProFTPD 缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
** 争议 ** ProFTPD 1.3.0a及更早版本当CommandBufferSize在配置文件中指定时未正确设置缓冲区大小限制,可造成缓冲区差二下溢。注:2006年11月,CommandBufferSize的角色最初和CVE-2006-5815相关,但这是源自不明初始披露源的错误。注:ProFTPD开发人员对此有争议,指出,在受影响函数中进一步使用之前,相关内存位置由分配来重写,因此不是一个漏洞。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2006-6171

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2006-6171

登录查看更多情报信息。

Same Patch Batch · n/a · 2006-11-30 · 27 CVEs total

CVE-2006-4407Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-6172Xine-Lib RuleMatches远程缓冲区溢出漏洞
CVE-2006-6170ProFTPD mod_tls预认证远程缓冲区溢出漏洞
CVE-2006-6177Neocrome Seditio users.profile.inc.php SQL注入漏洞
CVE-2006-6176Blogn admin.php 跨站脚本攻击漏洞
CVE-2006-6175Horde Kronolith H3 lib/FBView.php 目录遍历漏洞
CVE-2006-6174TDiary 跨站脚本攻击漏洞
CVE-2006-6173Apple Mac OS X Shared_Region_Make_Private_Np Kernel 函数缓存区溢出漏洞
CVE-2006-4412Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-4411Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-4410Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-4409Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-4408Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-4514LibGSF程序库远程堆溢出漏洞
CVE-2006-4406Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-4404Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-4403Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-4402Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-4401Apple Mac OS X 2006-007更新修复多个安全漏洞
CVE-2006-4400Apple Mac OS X 2006-007更新修复多个安全漏洞

Showing top 20 of 27 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2006-6171

No comments yet

Leave a comment