What is CVE-2006-4847?

CVE-2006-4847 is a vulnerability in N/a. Published 2006-09-19.

Is CVE-2006-4847 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2006-4847

Multiple buffer overflows in Ipswitch WS_FTP Server 5.05 before Hotfix 1 allow remote authenticated users to execute arbitrary code via long (1) XCRC, (2) XSHA1, or (3) XMD5 commands.

EPSS: 0.819 (99.2th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

21932 (x_refsource_SECUNIA, third-party-advisory)
ipswitch.com/support/ws_ftp-server/releases/wr505hf1.asp (x_refsource_CONFIRM)
ADV-2006-3655 (vdb-entry, x_refsource_VUPEN)
wsftp-xcrc-xsha1-xmd5-bo(28983) (vdb-entry, x_refsource_XF)
28939 (x_refsource_OSVDB, vdb-entry)
20076 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2006-4847?: CVE-2006-4847 is a vulnerability in N/a. Published 2006-09-19.
Is CVE-2006-4847 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.