{"api_version":"1","generated_at":"2026-04-23T17:15:13+00:00","cve":"CVE-2006-6742","urls":{"html":"https://cve.report/CVE-2006-6742","api":"https://cve.report/api/cve/CVE-2006-6742.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2006-6742","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2006-6742"},"summary":{"title":"CVE-2006-6742","description":"Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service (device crash) via a long string in the (1) LIST or (2) NLST command.","state":"PUBLISHED","assigner":"mitre","published_at":"2006-12-26 23:28:00","updated_at":"2026-04-23 00:35:47"},"problem_types":["NVD-CWE-Other","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"7.8","severity":"","vector":"AV:N/AC:L/Au:N/C:N/I:N/A:C","data":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"}}],"references":[{"url":"http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051367.html","name":"http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051367.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"[Full-disclosure] HP Printers FTP Server Denial Of Service","mime":"text/html","httpstatus":"404","archivestatus":"200"},{"url":"http://securityreason.com/securityalert/2074","name":"http://securityreason.com/securityalert/2074","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"HP Printers FTP Server Denial Of Service - CXSecurity.com","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2006/5081","name":"http://www.vupen.com/english/advisories/2006/5081","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/23396","name":"http://secunia.com/advisories/23396","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"HP FTP Print Server  LIST Denial of Service Vulnerability - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/archive/1/454817/100/0/threaded","name":"http://www.securityfocus.com/archive/1/454817/100/0/threaded","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SecurityFocus","mime":"text/x-python","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2006-6742","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2006-6742","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2006","cve_id":"6742","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"hp","cpe5":"ftp_print_server","cpe6":"2.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"6742","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"hp","cpe5":"ftp_print_server","cpe6":"2.4.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"6742","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"hp","cpe5":"laserjet_5000","cpe6":"r.25.15","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"6742","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"hp","cpe5":"laserjet_5000","cpe6":"r.25.47","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"6742","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"hp","cpe5":"laserjet_5100","cpe6":"v.29.12","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T20:34:00.166Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"20061219 HP Printers FTP Server Denial Of Service","tags":["mailing-list","x_refsource_FULLDISC","x_transferred"],"url":"http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051367.html"},{"name":"2074","tags":["third-party-advisory","x_refsource_SREASON","x_transferred"],"url":"http://securityreason.com/securityalert/2074"},{"name":"23396","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/23396"},{"name":"20061219 HP Printers FTP Server Denial Of Service","tags":["mailing-list","x_refsource_BUGTRAQ","x_transferred"],"url":"http://www.securityfocus.com/archive/1/454817/100/0/threaded"},{"name":"ADV-2006-5081","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/5081"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2006-12-19T00:00:00.000Z","descriptions":[{"lang":"en","value":"Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service (device crash) via a long string in the (1) LIST or (2) NLST command."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2018-10-17T20:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"20061219 HP Printers FTP Server Denial Of Service","tags":["mailing-list","x_refsource_FULLDISC"],"url":"http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051367.html"},{"name":"2074","tags":["third-party-advisory","x_refsource_SREASON"],"url":"http://securityreason.com/securityalert/2074"},{"name":"23396","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/23396"},{"name":"20061219 HP Printers FTP Server Denial Of Service","tags":["mailing-list","x_refsource_BUGTRAQ"],"url":"http://www.securityfocus.com/archive/1/454817/100/0/threaded"},{"name":"ADV-2006-5081","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/5081"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2006-6742","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service (device crash) via a long string in the (1) LIST or (2) NLST command."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"20061219 HP Printers FTP Server Denial Of Service","refsource":"FULLDISC","url":"http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051367.html"},{"name":"2074","refsource":"SREASON","url":"http://securityreason.com/securityalert/2074"},{"name":"23396","refsource":"SECUNIA","url":"http://secunia.com/advisories/23396"},{"name":"20061219 HP Printers FTP Server Denial Of Service","refsource":"BUGTRAQ","url":"http://www.securityfocus.com/archive/1/454817/100/0/threaded"},{"name":"ADV-2006-5081","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/5081"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2006-6742","datePublished":"2006-12-26T23:00:00.000Z","dateReserved":"2006-12-26T00:00:00.000Z","dateUpdated":"2024-08-07T20:34:00.166Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2006-12-26 23:28:00","lastModifiedDate":"2026-04-23 00:35:47","problem_types":["NVD-CWE-Other","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:hp:ftp_print_server:2.4:*:*:*:*:*:*:*","matchCriteriaId":"C2788794-A4FC-4978-83A6-FAA15D481D97"},{"vulnerable":true,"criteria":"cpe:2.3:a:hp:ftp_print_server:2.4.5:*:*:*:*:*:*:*","matchCriteriaId":"496E33DD-4CBE-44BA-8325-01DDADEFD110"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:hp:laserjet_5000:r.25.15:*:*:*:*:*:*:*","matchCriteriaId":"157C92C4-2217-4A53-B70D-16D2171E7ACE"},{"vulnerable":true,"criteria":"cpe:2.3:h:hp:laserjet_5000:r.25.47:*:*:*:*:*:*:*","matchCriteriaId":"776C077B-32E5-45AD-866C-9C7FBEDF9631"},{"vulnerable":true,"criteria":"cpe:2.3:h:hp:laserjet_5100:v.29.12:*:*:*:*:*:*:*","matchCriteriaId":"D29E506F-B2B1-466C-9DAA-C8DFB643F036"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2006","CveId":"6742","Ordinal":"1","Title":"CVE-2006-6742","CVE":"CVE-2006-6742","Year":"2006"},"notes":[{"CveYear":"2006","CveId":"6742","Ordinal":"1","NoteData":"Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service (device crash) via a long string in the (1) LIST or (2) NLST command.","Type":"Description","Title":"CVE-2006-6742"},{"CveYear":"2006","CveId":"6742","Ordinal":"2","NoteData":"2006-12-26","Type":"Other","Title":"Published"},{"CveYear":"2006","CveId":"6742","Ordinal":"3","NoteData":"2018-10-17","Type":"Other","Title":"Modified"}]}}}