CVE-2006-5000

Published: Sep 26, 2006Modified: Apr 16, 2026

6.5

Vector

AV:N/AC:L/Au:S/C:P/I:P/A:P

Exploitability: 8.0 / Impact: 6.4

Source: NVD

Description

Multiple buffer overflows in WS_FTP Server 5.05 before Hotfix 1, and possibly other versions down to 5.0, have unknown impact and remote authenticated attack vectors via the (1) XCRC, (2) XMD5, and (3) XSHA1 commands. NOTE: in the early publication of this identifier on 20060926, the description was used for the wrong issue.

Affected (4)

Products: Ipswitch: Ws Ftp Server · Progress: Ws Ftp Server

1 product

1 product

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Ipswitch Ws Ftp Server	Version 5.02
Ipswitch Ws Ftp Server	Version 5.03
Ipswitch Ws Ftp Server	Version 5.05
Progress Ws Ftp Server	Version 5.0.2

References (10)

http://securitytracker.com/id?1016935

Source: cve@mitre.org

http://www.ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp

Source: cve@mitre.org

Patch

http://www.securityfocus.com/archive/1/447077/100/0/threaded

Source: cve@mitre.org

http://www.zerodayinitiative.com/advisories/ZDI-06-029.html

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/41829

Source: cve@mitre.org

http://securitytracker.com/id?1016935

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securityfocus.com/archive/1/447077/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.zerodayinitiative.com/advisories/ZDI-06-029.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/41829

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.