Lucene search
HistoryJul 27, 2005 - 4:00 a.m.
CVE-2005-2390
proftpd
1.3.0rc2
format string
vulnerability
denial of service
sensitive information
ftpshut
sqlshowinfo
mod_sql
nvd
6.5 Medium
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
0.004 Low
EPSS
Percentile
74.0%
Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via (1) certain inputs to the shutdown message from ftpshut, or (2) the SQLShowInfo mod_sql directive.
Related
nessus
nessus
Mandrake Linux Security Advisory : proftpd (MDKSA-2005:140)
2005-10-05 00:00:00
ProFTPD < 1.3.0rc2 Multiple Remote Format Strings
2005-07-27 00:00:00
ubuntucve
ubuntucve
CVE-2005-2390
2005-07-27 00:00:00
debian
debian
openvas
openvas
Debian Security Advisory DSA 795-2 (proftpd)
2008-01-17 00:00:00
Gentoo Security Advisory GLSA 200508-02 (proftpd)
2008-09-24 00:00:00
FreeBSD Ports: proftpd, proftpd-mysql
2008-09-04 00:00:00
gentoo
gentoo
ProFTPD: Format string vulnerabilities
2005-08-01 00:00:00
freebsd
freebsd
proftpd -- format string vulnerabilities
2005-07-26 00:00:00
6.5 Medium
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:N/A:P
0.004 Low
EPSS
Percentile
74.0%
Related for CVE-2005-2390