CVE-2006-2225
published 2006-05-05CVE-2006-2225: Buffer overflow in XM Easy Personal FTP Server 4.3 and earlier allows remote attackers to execute arbitrary code, probably via a USER command with a long…
PriorityP344high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
6.03%
92.5th percentile
Buffer overflow in XM Easy Personal FTP Server 4.3 and earlier allows remote attackers to execute arbitrary code, probably via a USER command with a long username.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| dxmsoft | xm_easy_personal_ftp_server | <= 4.3 | — |
| dxmsoft | xm_easy_personal_ftp_server | — | — |
| dxmsoft | xm_easy_personal_ftp_server | — | — |
| dxmsoft | xm_easy_personal_ftp_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-m7cr-6gr9-x5mh: Buffer overflow in XM Easy Personal FTP Server 4
ghsa_unreviewed·2022-05-01
CVE-2006-2225 [HIGH] GHSA-m7cr-6gr9-x5mh: Buffer overflow in XM Easy Personal FTP Server 4
Buffer overflow in XM Easy Personal FTP Server 4.3 and earlier allows remote attackers to execute arbitrary code, probably via a USER command with a long username.
GHSA
GHSA-9mjq-x7gx-cjjq: Multiple buffer overflows in XM Easy Personal FTP Server 5
ghsa_unreviewed·2022-05-01·CVSS 7.5
CVE-2007-1195 [HIGH] GHSA-9mjq-x7gx-cjjq: Multiple buffer overflows in XM Easy Personal FTP Server 5
Multiple buffer overflows in XM Easy Personal FTP Server 5.3.0 allow remote attackers to execute arbitrary code via unspecified vectors. NOTE: this issue might overlap CVE-2006-2225, CVE-2006-2226, or CVE-2006-5728.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/19970http://securityreason.com/securityalert/851http://www.osvdb.org/25277http://www.osvdb.org/25314http://www.securityfocus.com/archive/1/432960/100/0/threadedhttp://www.securityfocus.com/bid/17836http://www.vupen.com/english/advisories/2006/1673https://exchange.xforce.ibmcloud.com/vulnerabilities/26256http://secunia.com/advisories/19970http://securityreason.com/securityalert/851http://www.osvdb.org/25277http://www.osvdb.org/25314http://www.securityfocus.com/archive/1/432960/100/0/threadedhttp://www.securityfocus.com/bid/17836http://www.vupen.com/english/advisories/2006/1673https://exchange.xforce.ibmcloud.com/vulnerabilities/26256
2006-05-05
Published