CVE-2006-4847

Published: Sep 19, 2006Modified: Apr 16, 2026

6.5

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability: 8.0 / Impact: 6.4

Source: NVD

Description

Multiple buffer overflows in Ipswitch WS_FTP Server 5.05 before Hotfix 1 allow remote authenticated users to execute arbitrary code via long (1) XCRC, (2) XSHA1, or (3) XMD5 commands.

Affected (27)

Products: Ipswitch: Ws Ftp Server · Progress: Ws Ftp Server

1 product

1 product

Configuration A

27 vulnerable

Vulnerable Software	Affected Versions
Ipswitch Ws Ftp Server	Version 1.0.1eval
Ipswitch Ws Ftp Server	Version 1.0.2eval
Ipswitch Ws Ftp Server	Version 3.0_1
Ipswitch Ws Ftp Server	Version 4.01
Ipswitch Ws Ftp Server	Version 5.02
Ipswitch Ws Ftp Server	Version 5.03
Progress Ws Ftp Server	Up to 5.05
Progress Ws Ftp Server	Version 1.0.1.e
Progress Ws Ftp Server	Version 1.0.1
Progress Ws Ftp Server	Version 1.0.2.e
Progress Ws Ftp Server	Version 1.0.2
Progress Ws Ftp Server	Version 1.0.3
Progress Ws Ftp Server	Version 1.0.4
Progress Ws Ftp Server	Version 1.0.5
Progress Ws Ftp Server	Version 2.0.1
Progress Ws Ftp Server	Version 2.0.2
Progress Ws Ftp Server	Version 2.0.3
Progress Ws Ftp Server	Version 2.0.4
Progress Ws Ftp Server	Version 2.0
Progress Ws Ftp Server	Version 3.0
Progress Ws Ftp Server	Version 3.1.1
Progress Ws Ftp Server	Version 3.1.2
Progress Ws Ftp Server	Version 3.1.3
Progress Ws Ftp Server	Version 3.1
Progress Ws Ftp Server	Version 3.4
Progress Ws Ftp Server	Version 4.0.2
Progress Ws Ftp Server	Version 4.0