Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2007

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-2007
Last Modified 07 Mar 2011 09:34:47
Published 25 Apr 2006 08:50:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2007

Summary

Heap-based buffer overflow in Winny 2.0 b7.1 and earlier allows remote attackers to execute arbitrary code via long strings to certain commands sent to the file transfer port.

Vulnerable Systems

Application

  • Winny 2.0b5.7

  • Winny 2.0b7.1


References

CERT-VN - VU#167033

VUPEN - ADV-2006-1486

BID - 17666

MISC - http://www.eeye.com/html/research/advisories/AD20060421.html

SECUNIA - 19795

JVN - JVN#74294680

XF - winny-file-transfer-bo(25986)

OSVDB - 24883


Last Updated: 27 May 2016 10:42:18