DEBIAN-CVE-2006-6170

Advisory lineage Upstream: 1 Downstream: 1

Upstream

CVE-2006-6170

Downstream

DSA-1222-1

Published: 30 Nov 2006, 15:28

Last modified:28 Apr 2026, 20:09

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

30 Nov 2006, 15:28

Published

Vulnerability first disclosed

28 Apr 2026, 20:09

Last Modified

Vulnerability information updated

Description

Buffer overflow in the tls_x509_name_oneline function in the mod_tls module, as used in ProFTPD 1.3.0a and earlier, and possibly other products, allows remote attackers to execute arbitrary code via a large data length argument, a different vulnerability than CVE-2006-5815.

Affected Systems

debian•proftpd-dfsg
< 1.3.0-16 | < 1.3.0-16 | < 1.3.0-16 | < 1.3.0-16

References (1)

https://security-tracker.debian.org/tracker/CVE-2006-6170