Lucene search
HistoryAug 18, 2004 - 4:00 a.m.
CVE-2004-0432
proftpd
vulnerability
access restrictions
cve-2004-0432
nvd
6.5 Medium
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
73.6%
ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions.
Related
openvas
openvas
FreeBSD Ports: proftpd
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200405-09 (proftpd)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200405-09 (proftpd)
2008-09-24 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : proftpd (MDKSA-2004:041)
2004-07-31 00:00:00
GLSA-200405-09 : ProFTPD Access Control List bypass vulnerability
2004-08-30 00:00:00
cvelist
cvelist
CVE-2004-0432
2004-05-05 04:00:00
gentoo
gentoo
ProFTPD Access Control List bypass vulnerability
2004-05-19 00:00:00
freebsd
freebsd
proftpd IP address access control list breakage
2003-11-04 00:00:00
6.5 Medium
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.004 Low
EPSS
Percentile
73.6%
Related for CVE-2004-0432