cbcvebase.
CVE-2006-6564
published 2006-12-15

CVE-2006-6564: FileZilla Server before 0.9.22 allows remote attackers to cause a denial of service (crash) via a malformed argument to the STOR command, which results in a…

PriorityP416medium4CVSS 2.0
AVNACLAuSCNINAP
EXPLOIT
EPSS
5.73%
92.1th percentile
FileZilla Server before 0.9.22 allows remote attackers to cause a denial of service (crash) via a malformed argument to the STOR command, which results in a NULL pointer dereference. NOTE: CVE analysis suggests that the problem might be due to a malformed PORT command.

Affected

2 ranges
VendorProductVersion rangeFixed in
filezilla-projectfilezilla_server< 0.9.220.9.22
filezillafilezilla<= 0.9.21
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.