CVE-2006-0319
published 2006-01-19CVE-2006-0319: Directory traversal vulnerability in the FTP server (port 22003/tcp) in Farmers WIFE 4.4 SP1 allows remote attackers to create arbitrary files via ".." (dot…
PriorityP336medium5CVSS 2.0
AVNACLAuNCNIPAN
EXPLOIT
EPSS
6.76%
93.2th percentile
Directory traversal vulnerability in the FTP server (port 22003/tcp) in Farmers WIFE 4.4 SP1 allows remote attackers to create arbitrary files via ".." (dot dot) sequences in a (1) PUT, (2) SIZE, and possibly other commands.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| farmers_wife | farmers_wife | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-h8jm-j24w-759m: Directory traversal vulnerability in the FTP server (port 22003/tcp) in Farmers WIFE 4
ghsa_unreviewed·2022-05-01
CVE-2006-0319 [MEDIUM] GHSA-h8jm-j24w-759m: Directory traversal vulnerability in the FTP server (port 22003/tcp) in Farmers WIFE 4
Directory traversal vulnerability in the FTP server (port 22003/tcp) in Farmers WIFE 4.4 SP1 allows remote attackers to create arbitrary files via ".." (dot dot) sequences in a (1) PUT, (2) SIZE, and possibly other commands.
Red Hat
gnutls: unknown hash algorithm NULL pointer derefence [GNUTLS-SA-2006-2]
vendor_redhat·2006-08-12·CVSS 5.0
CVE-2006-7239 [MEDIUM] CWE-476 gnutls: unknown hash algorithm NULL pointer derefence [GNUTLS-SA-2006-2]
gnutls: unknown hash algorithm NULL pointer derefence [GNUTLS-SA-2006-2]
The _gnutls_x509_oid2mac_algorithm function in lib/gnutls_algorithms.c in GnuTLS before 1.4.2 allows remote attackers to cause a denial of service (crash) via a crafted X.509 certificate that uses a hash algorithm that is not supported by GnuTLS, which triggers a NULL pointer dereference.
Statement: This issue was addressed in Red Hat Enterprise Linux 5 via RHBA-2012:0319: https://rhn.redhat.com/errata/RHBA-2012-0319.html
It did not affect versions of gnutls as shipped with Red Hat Enterprise Linux 4 and 6.
Package: gnutls (Red Hat Enterprise Linux 4) - Not affected
Package: gnutls (Red Hat Enterprise Linux 6) - Not affected
No detection rules found.
No writeups or analysis indexed.
http://marc.info/?l=full-disclosure&m=113717162320654&w=2http://secunia.com/advisories/18508http://www.lort.dk/DSR-farmerswife44sp1.plhttp://www.osvdb.org/22496http://www.securityfocus.com/bid/16321https://exchange.xforce.ibmcloud.com/vulnerabilities/24190http://marc.info/?l=full-disclosure&m=113717162320654&w=2http://secunia.com/advisories/18508http://www.lort.dk/DSR-farmerswife44sp1.plhttp://www.osvdb.org/22496http://www.securityfocus.com/bid/16321https://exchange.xforce.ibmcloud.com/vulnerabilities/24190
2006-01-19
Published