7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.927 High
EPSS
Percentile
99.0%
ProFTPD is an advanced and very configurable FTP server.
The following vulnerabilities were reported:
A remote attacker could send specially crafted requests to the server, possibly resulting in the execution of arbitrary SQL statements.
There is no known workaround at this time.
All ProFTPD users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=net-ftp/proftpd-1.3.2"
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Gentoo | any | all | net-ftp/proftpd | < 1.3.2 | UNKNOWN |