Fedora 22 : proftpd-1.3.5a-5.fc22 (2015-97055df8a0)

Part of the SFTP handshake involves 'extensions', which are key/value pairs, comprised of strings. In SSH, strings are encoded for network transport as a 32-bit length, followed by the bytes. The modsftp module currently places no bounds/length limitations when reading these SFTP extension...

ProFTPd 1.3.5a Heap Overflow Exploit

ProFTPd version 1.3.5a suffers from heap overflow vulnerabilities. =============================================== Credit: Nicholas Lemonias 0day.today Exploit Market .::PROFTPD v1.3.5a HEAP OVERFLOWS ::. ====================================================== .88888888:. 88888888.88888...

Proftpd Heap Overflow Vulnerability

ProFTPD is an FTP server program for Unix or Unix-like platforms such as Linux, FreeBSD, etc.. A heap overflow vulnerability exists in ProFTPD v1.3.5a. Due to a heap overflow caused by zero-length mallocs allocation, an attacker can exploit the vulnerability to overwrite arbitrary memory...