Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-338
HistoryJun 29, 2003 - 12:00 a.m.

proftpd - SQL injection

2003-06-2900:00:00
Google
osv.dev
13

EPSS

0.002

Percentile

59.3%

JSON

runlevel [[email protected]] reported that ProFTPD’s PostgreSQL
authentication module is vulnerable to a SQL injection attack. This
vulnerability could be exploited by a remote, unauthenticated attacker
to execute arbitrary SQL statements, potentially exposing the
passwords of other users, or to connect to ProFTPD as an arbitrary
user without supplying the correct password.

For the stable distribution (woody) this problem has been fixed in
version 1.2.4+1.2.5rc1-5woody2.

For the unstable distribution (sid) this problem has been fixed in
version 1.2.8-8.

We recommend that you update your proftpd package.

Related

nessus 2
cvelist 1
openvas 2
cve 1
nvd 1
exploitdb 1
nessus
nessus
Debian DSA-338-1 : proftpd - SQL injection
2004-09-29 00:00:00
PostgreSQL Authentication Module (mod_sql) for ProFTPD USER Name Parameter SQL Injection
2003-06-19 00:00:00
cvelist
cvelist
CVE-2003-0500
2003-07-04 04:00:00
openvas
openvas
Debian: Security Advisory (DSA-338)
2008-01-17 00:00:00
Debian Security Advisory DSA 338-1 (x-face-el)
2008-01-17 00:00:00
cve
cve
CVE-2003-0500
2003-08-07 04:00:00
nvd
nvd
CVE-2003-0500
2003-08-07 04:00:00
exploitdb
exploitdb
ProFTPd 1.2.9 RC1 - 'mod_sql' SQL Injection
2003-06-19 00:00:00

EPSS

0.002

Percentile

59.3%

JSON
Related for OSV:DSA-338
nessus2cvelist1openvas2cve1nvd1exploitdb1