[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2006-5815":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":68,"aliases":112,"duplicate_of":9,"upstream":113,"downstream":114,"duplicates":121,"related":122,"reserved_at":9,"published_at":124,"modified_at":125,"state":126,"summary":127,"references_raw":135,"kevs":255,"epss":256,"epss_history":259,"metrics":478,"affected":481},"CVE-2006-5815","Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a \"ProFTPD remote exploit.\"",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-119","Improper Restriction of Operations within the Bounds of a Memory Buffer","The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.","weakness","Stable","Class","High",[20,24,28,32,36,40,44,48,52,56,60,64],{"id":21,"name":22,"techniques":23},"CAPEC-10","Buffer Overflow via Environment Variables",[],{"id":25,"name":26,"techniques":27},"CAPEC-100","Overflow Buffers",[],{"id":29,"name":30,"techniques":31},"CAPEC-123","Buffer Manipulation",[],{"id":33,"name":34,"techniques":35},"CAPEC-14","Client-side Injection-induced Buffer Overflow",[],{"id":37,"name":38,"techniques":39},"CAPEC-24","Filter Failure through Buffer Overflow",[],{"id":41,"name":42,"techniques":43},"CAPEC-42","MIME Conversion",[],{"id":45,"name":46,"techniques":47},"CAPEC-44","Overflow Binary Resource File",[],{"id":49,"name":50,"techniques":51},"CAPEC-45","Buffer Overflow via Symbolic Links",[],{"id":53,"name":54,"techniques":55},"CAPEC-46","Overflow Variables and Tags",[],{"id":57,"name":58,"techniques":59},"CAPEC-47","Buffer Overflow via Parameter Expansion",[],{"id":61,"name":62,"techniques":63},"CAPEC-8","Buffer Overflow in an API Call",[],{"id":65,"name":66,"techniques":67},"CAPEC-9","Buffer Overflow in Local Command-Line Utilities",[],[69,84,92],{"_key":70,"name":71,"source":72,"url":73,"maturity":74,"reliability_score":75,"verified":76,"type":77,"platforms":78,"requires_auth":9,"exploitdb":80,"metasploit":9},"16852","ProFTPd 1.2 \u003C 1.3.0 (Linux) - 'sreplace' Remote Buffer Overflow (Metasploit)","exploit-database","https://www.exploit-db.com/exploits/16852","weaponized",0.8,true,"remote",[79],"linux",{"verified":76,"type":77,"platform":79,"file":81,"codes":82},"exploits/linux/remote/16852.rb",[7,83],"OSVDB-68985",{"_key":85,"name":86,"source":72,"url":87,"maturity":74,"reliability_score":75,"verified":76,"type":77,"platforms":88,"requires_auth":9,"exploitdb":89,"metasploit":9},"2856","ProFTPd 1.3.0 - 'sreplace' Remote Stack Overflow (Metasploit)","https://www.exploit-db.com/exploits/2856",[79],{"verified":76,"type":77,"platform":79,"file":90,"codes":91},"exploits/linux/remote/2856.pm",[7],{"_key":93,"name":94,"source":95,"url":96,"maturity":74,"reliability_score":97,"verified":76,"type":77,"platforms":98,"requires_auth":99,"exploitdb":9,"metasploit":100},"MSF_EXPLOIT_LINUX_FTP_PROFTP_SREPLACE","ProFTPD 1.2 - 1.3.0 sreplace Buffer Overflow (Linux)","metasploit","https://github.com/rapid7/metasploit-framework/blob/master/modules/exploit/linux/ftp/proftp_sreplace.rb",0.8333333333333334,[],false,{"fullname":101,"rank":102,"rank_name":103,"post_auth":99,"check":76,"notes":104},"exploit/linux/ftp/proftp_sreplace",500,"great",{"Stability":105,"SideEffects":107,"Reliability":110},[106],"crash-service-down",[108,109],"artifacts-on-disk","ioc-in-logs",[111],"unreliable-session",[],[],[115,117,119],{"_key":116},"OPENSUSE-SU-2024:11196-1",{"_key":118},"DSA-1222-1",{"_key":120},"DEBIAN-CVE-2006-5815",[],[123],{"_key":116},"2006-11-08T23:00:00.000Z","2024-08-07T20:04:55.597Z","Modified",{"cisa_kev":99,"cisa_ransomware":99,"cisa_vendor":9,"epss_severity":128,"epss_score":129,"severity":130,"severity_score":131,"severity_version":132,"severity_source":133,"severity_vector":134,"severity_status":126},"critical",0.74734,"high",10,"v2.0","nvd","AV:N/AC:L/Au:N/C:C/I:C/A:C",[136,144,149,154,159,165,170,175,181,186,191,195,199,204,208,212,216,221,225,229,233,238,242,246,251],{"url":137,"sources":138,"tags":140},"http://www.vupen.com/english/advisories/2006/4451",[139,133],"cve.org",[141,142,143],"VDB Entry","X Refsource VUPEN","Vendor Advisory",{"url":145,"sources":146,"tags":147},"http://gleg.net/vulndisco_meta.shtml",[139,133],[148],"X Refsource MISC",{"url":150,"sources":151,"tags":152},"http://www.debian.org/security/2006/dsa-1222",[139,133],[143,153],"X Refsource DEBIAN",{"url":155,"sources":156,"tags":157},"http://www.mandriva.com/security/advisories?name=MDKSA-2006:217",[139,133],[143,158],"X Refsource MANDRIVA",{"url":160,"sources":161,"tags":162},"http://secunia.com/advisories/23207",[139,133],[163,164,143],"Third Party Advisory","X Refsource SECUNIA",{"url":166,"sources":167,"tags":168},"http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.502491",[139,133],[143,169],"X Refsource SLACKWARE",{"url":171,"sources":172,"tags":173},"http://www.trustix.org/errata/2006/0066/",[139,133],[143,174],"X Refsource TRUSTIX",{"url":176,"sources":177,"tags":178},"http://www.securityfocus.com/archive/1/452760/100/200/threaded",[139,133],[179,180],"Mailing List","X Refsource BUGTRAQ",{"url":182,"sources":183,"tags":184},"http://securitytracker.com/id?1017167",[139,133],[141,185],"X Refsource SECTRACK",{"url":187,"sources":188,"tags":189},"http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.035-proftpd.html",[139,133],[143,190],"X Refsource OPENPKG",{"url":192,"sources":193,"tags":194},"http://secunia.com/advisories/23174",[139,133],[163,164,143],{"url":196,"sources":197,"tags":198},"http://www.mandriva.com/security/advisories?name=MDKSA-2006:217-1",[139,133],[143,158],{"url":200,"sources":201,"tags":202},"https://exchange.xforce.ibmcloud.com/vulnerabilities/30147",[139,133],[141,203],"X Refsource XF",{"url":205,"sources":206,"tags":207},"http://www.trustix.org/errata/2006/0070",[139,133],[143,174],{"url":209,"sources":210,"tags":211},"http://secunia.com/advisories/23069",[139,133],[163,164,143],{"url":213,"sources":214,"tags":215},"http://secunia.com/advisories/23000",[139,133],[163,164,143],{"url":217,"sources":218,"tags":219},"https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=214820",[139,133],[220],"X Refsource CONFIRM",{"url":222,"sources":223,"tags":224},"http://secunia.com/advisories/22821",[139,133],[163,164,143],{"url":226,"sources":227,"tags":228},"http://secunia.com/advisories/23184",[139,133],[163,164,143],{"url":230,"sources":231,"tags":232},"http://secunia.com/advisories/23125",[139,133],[163,164,143],{"url":234,"sources":235,"tags":236},"http://www.securityfocus.com/bid/20992",[139,133],[141,237],"X Refsource BID",{"url":239,"sources":240,"tags":241},"http://bugs.proftpd.org/show_bug.cgi?id=2858",[139,133],[220],{"url":243,"sources":244,"tags":245},"http://secunia.com/advisories/23179",[139,133],[163,164,143],{"url":247,"sources":248,"tags":249},"http://www.gentoo.org/security/en/glsa/glsa-200611-26.xml",[139,133],[143,250],"X Refsource GENTOO",{"url":252,"sources":253,"tags":254},"http://secunia.com/advisories/22803",[139,133],[163,164,143],[],{"date":257,"score":129,"percentile":258},"2026-06-04",0.98882,[260,264,266,269,271,273,275,277,279,282,285,288,290,292,294,297,300,303,305,308,310,312,314,316,318,320,322,324,327,330,333,335,337,339,341,344,346,348,351,354,357,359,361,364,367,369,371,373,376,378,380,383,385,387,390,392,394,396,399,402,404,406,409,411,414,417,420,423,425,428,430,432,434,436,439,441,443,446,449,451,454,456,459,461,464,466,469,471,474,476],{"date":261,"score":262,"percentile":263},"2025-11-04",0.59834,0.98158,{"date":265,"score":262,"percentile":263},"2025-11-05",{"date":267,"score":262,"percentile":268},"2025-11-06",0.98159,{"date":270,"score":262,"percentile":268},"2025-11-07",{"date":272,"score":262,"percentile":268},"2025-11-08",{"date":274,"score":262,"percentile":268},"2025-11-09",{"date":276,"score":262,"percentile":268},"2025-11-10",{"date":278,"score":262,"percentile":268},"2025-11-11",{"date":280,"score":262,"percentile":281},"2025-11-12",0.98161,{"date":283,"score":262,"percentile":284},"2025-11-13",0.98162,{"date":286,"score":262,"percentile":287},"2025-11-14",0.98163,{"date":289,"score":262,"percentile":281},"2025-11-15",{"date":291,"score":262,"percentile":281},"2025-11-16",{"date":293,"score":262,"percentile":281},"2025-11-17",{"date":295,"score":262,"percentile":296},"2025-11-18",0.98213,{"date":298,"score":262,"percentile":299},"2025-11-19",0.98215,{"date":301,"score":262,"percentile":302},"2025-11-20",0.98217,{"date":304,"score":262,"percentile":263},"2025-11-21",{"date":306,"score":262,"percentile":307},"2025-11-22",0.98157,{"date":309,"score":262,"percentile":307},"2025-11-23",{"date":311,"score":262,"percentile":307},"2025-11-24",{"date":313,"score":262,"percentile":307},"2025-11-25",{"date":315,"score":262,"percentile":307},"2025-11-26",{"date":317,"score":262,"percentile":307},"2025-11-27",{"date":319,"score":262,"percentile":307},"2025-11-28",{"date":321,"score":262,"percentile":263},"2025-11-29",{"date":323,"score":262,"percentile":263},"2025-11-30",{"date":325,"score":262,"percentile":326},"2025-12-01",0.98174,{"date":328,"score":262,"percentile":329},"2025-12-02",0.98175,{"date":331,"score":262,"percentile":332},"2025-12-03",0.98176,{"date":334,"score":262,"percentile":263},"2025-12-04",{"date":336,"score":262,"percentile":263},"2025-12-05",{"date":338,"score":262,"percentile":263},"2025-12-06",{"date":340,"score":262,"percentile":268},"2025-12-07",{"date":342,"score":262,"percentile":343},"2025-12-08",0.9816,{"date":345,"score":262,"percentile":268},"2025-12-09",{"date":347,"score":262,"percentile":287},"2025-12-10",{"date":349,"score":262,"percentile":350},"2025-12-11",0.98166,{"date":352,"score":262,"percentile":353},"2025-12-12",0.98168,{"date":355,"score":262,"percentile":356},"2025-12-13",0.98165,{"date":358,"score":262,"percentile":356},"2025-12-14",{"date":360,"score":262,"percentile":356},"2025-12-15",{"date":362,"score":262,"percentile":363},"2025-12-16",0.98169,{"date":365,"score":262,"percentile":366},"2025-12-17",0.98171,{"date":368,"score":262,"percentile":363},"2025-12-18",{"date":370,"score":262,"percentile":366},"2025-12-19",{"date":372,"score":262,"percentile":366},"2025-12-20",{"date":374,"score":262,"percentile":375},"2025-12-21",0.9817,{"date":377,"score":262,"percentile":356},"2025-12-22",{"date":379,"score":262,"percentile":350},"2025-12-23",{"date":381,"score":262,"percentile":382},"2025-12-24",0.98167,{"date":384,"score":262,"percentile":350},"2025-12-25",{"date":386,"score":262,"percentile":350},"2025-12-26",{"date":388,"score":262,"percentile":389},"2025-12-27",0.98186,{"date":391,"score":262,"percentile":353},"2025-12-28",{"date":393,"score":262,"percentile":363},"2025-12-29",{"date":395,"score":262,"percentile":363},"2025-12-30",{"date":397,"score":262,"percentile":398},"2025-12-31",0.98172,{"date":400,"score":262,"percentile":401},"2026-01-01",0.98194,{"date":403,"score":262,"percentile":401},"2026-01-02",{"date":405,"score":262,"percentile":401},"2026-01-03",{"date":407,"score":262,"percentile":408},"2026-01-04",0.9818,{"date":410,"score":262,"percentile":408},"2026-01-05",{"date":412,"score":262,"percentile":413},"2026-01-06",0.98181,{"date":415,"score":262,"percentile":416},"2026-01-07",0.98182,{"date":418,"score":262,"percentile":419},"2026-01-08",0.98183,{"date":421,"score":262,"percentile":422},"2026-01-09",0.98185,{"date":424,"score":262,"percentile":389},"2026-01-10",{"date":426,"score":262,"percentile":427},"2026-01-11",0.98184,{"date":429,"score":262,"percentile":427},"2026-01-12",{"date":431,"score":262,"percentile":427},"2026-01-13",{"date":433,"score":262,"percentile":422},"2026-01-14",{"date":435,"score":262,"percentile":389},"2026-01-15",{"date":437,"score":262,"percentile":438},"2026-01-16",0.98187,{"date":440,"score":262,"percentile":438},"2026-01-17",{"date":442,"score":262,"percentile":438},"2026-01-18",{"date":444,"score":262,"percentile":445},"2026-01-19",0.98188,{"date":447,"score":262,"percentile":448},"2026-01-20",0.98191,{"date":450,"score":262,"percentile":448},"2026-01-21",{"date":452,"score":262,"percentile":453},"2026-01-22",0.98193,{"date":455,"score":262,"percentile":453},"2026-01-23",{"date":457,"score":262,"percentile":458},"2026-01-24",0.98195,{"date":460,"score":262,"percentile":458},"2026-01-25",{"date":462,"score":262,"percentile":463},"2026-01-26",0.98197,{"date":465,"score":262,"percentile":463},"2026-01-27",{"date":467,"score":262,"percentile":468},"2026-01-28",0.98198,{"date":470,"score":262,"percentile":468},"2026-01-29",{"date":472,"score":262,"percentile":473},"2026-01-30",0.98199,{"date":475,"score":262,"percentile":468},"2026-01-31",{"date":477,"score":262,"percentile":299},"2026-02-01",[479],{"source":133,"cvss_v2_0":480,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":131,"baseSeverity":9,"vectorString":134,"impactScore":131,"exploitabilityScore":131},[482],{"ecosystem":9,"name":483,"vendor":484,"product":483,"cpe_part":485,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":486},"proftpd","proftpd_project","a",[487],{"version":488,"is_range":76,"range_type":489,"version_start":9,"version_start_type":9,"version_end":490,"version_end_type":491,"fixed_in":9},"lte1.3.0","cpe","1.3.0","including"]