Multiple directory traversal vulnerabilities in the mod_site_misc module in ProFTPD before 1.3.3c allow remote authenticated users to create directories, delete directories, create symlinks, and modify file timestamps via directory traversal sequences in a (1) SITE MKDIR, (2) SITE RMDIR, (3) SITE SYMLINK, or (4) SITE UTIME command.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | proftpd-dfsg | <ย 1.3.3a-4 | proftpd-dfsg_1.3.3a-4_all.deb |
Debian | 11 | all | proftpd-dfsg | <ย 1.3.3a-4 | proftpd-dfsg_1.3.3a-4_all.deb |
Debian | 10 | all | proftpd-dfsg | <ย 1.3.3a-4 | proftpd-dfsg_1.3.3a-4_all.deb |
Debian | 999 | all | proftpd-dfsg | <ย 1.3.3a-4 | proftpd-dfsg_1.3.3a-4_all.deb |
Debian | 13 | all | proftpd-dfsg | <ย 1.3.3a-4 | proftpd-dfsg_1.3.3a-4_all.deb |