FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2006-0705

This CVE name corresponds to:

Entered Topic
2006-03-04 SSH.COM SFTP server -- format string vulnerability

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2006-0705
Phase Assigned(20060215)

Description

Format string vulnerability in a logging function as used by various SFTP servers, including (1) AttachmateWRQ Reflection for Secure IT UNIX Server before 6.0.0.9, (2) Reflection for Secure IT Windows Server before 6.0 build 38, (3) F-Secure SSH Server for Windows before 5.3 build 35, (4) F-Secure SSH Server for UNIX 3.0 through 5.0.8, (5) SSH Tectia Server 4.3.6 and earlier and 4.4.0, and (6) SSH Shell Server 3.2.9 and earlier, allows remote authenticated users to execute arbitrary commands via unspecified vectors, involving crafted filenames and the stat command.

References

Source Reference
CONFIRM http://support.wrq.com/techdocs/1882.html
GENTOO GLSA-200703-13
HP HPSBTU02322
HP SSRT080011
CERT-VN VU#419241
BID 16625
BID 16640
VUPEN ADV-2006-0554
VUPEN ADV-2006-0555
VUPEN ADV-2008-1008
SECTRACK 1015619
SECUNIA 18828
SECUNIA 18843
SECUNIA 24516
SECUNIA 29552
XF sftp-logging-format-string(24651)