The FTP (aka βImplementation of a simple FTP client and serverβ) project through 96c1a35 allows remote attackers to cause a denial of service (memory consumption) by engaging in client activity, such as establishing and then terminating a connection. This occurs because malloc is used but free is not.
CPE | Name | Operator | Version |
---|---|---|---|
ftp | eq | <= 2012328 |