125 matches found
CVE-2024-57392
Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remote attacker to execute arbitrary code and can cause a Denial of Service DoS on the FTP service by sending a maliciously crafted message to the ProFTPD service port...
CVE-2024-57392
Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remote attacker to execute arbitrary code and can cause a Denial of Service DoS on the FTP service by sending a maliciously crafted message to the ProFTPD service port...
CVE-2024-57392
Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remote attacker to execute arbitrary code and can cause a Denial of Service DoS on the FTP service by sending a maliciously crafted message to the ProFTPD service port...
DEBIAN-CVE-2024-48651
In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental groups from modsql...
CVE-2024-48651
In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental groups from modsql...
Vulnerability fixed in ProFTPd
A vulnerability has been fixed in ProFTPd. The vulnerability allows an authenticated remote malicious person to perform a denial-of-service DoS via a specially prepared command to cause a denial-of-service DoS cause. The developers of ProFTP have released updates to fix the vulnerability. For mor...
UBUNTU-CVE-2023-51713
makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...
CVE-2021-46854
modradius in ProFTPD before 1.3.7c allows memory disclosure to RADIUS servers because it copies blocks of 16 characters...
MGASA-2021-0434 Updated proftpd packages fix security vulnerability
Fixes memory disclosure to RADIUS servers by modradius. Ftp clients like filezilla fail to detect locale with in log : "Status: Server does not support non-ASCII characters." This comes from proftpd MultilineRFC2228 directive enabled by default. Without this directive Filezilla is able to enable...
ProFTPD Buffer Overflow Vulnerability
ProFTPD is a secure cloud printing solution from the ProFTPD team. The solution supports printing from laptops, desktops and mobile devices connected to printers. ProFTPD suffers from a buffer overflow vulnerability. An attacker could exploit this vulnerability to cause a buffer overflow or heap...
Out-of-bounds
ProFTPD 1.3.7 has an out-of-bounds OOB read vulnerability in modcap via the captext.c captotext function...
PT-2020-5165 · Proftpd +2 · Proftpd +2
Name of the Vulnerable Software and Affected Versions: ProFTPD versions prior to 1.3.5e+r1.3.5-2+deb8u7 ProFTPD versions prior to 1.3.6-alt0.4.ga73dbfe3b ProFTPD versions prior to 1.3.6-4+deb10u4 ProFTPD version 1.3.7 Description: ProFTPD contains a use-after-free vulnerability within the memory...
The vulnerability of the main.c component of the ProFTPD FTP server lies in the execution of a loop with an unreachable exit condition, allowing a hacker to cause a service failure.
The vulnerability of the main.c component of the ProFTPD FTP server is related to incorrect handling of long commands. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...
PT-2019-2795
Name of the Vulnerable Software and Affected Versions ProFTPD versions up to 1.3.5b Description The issue is related to an arbitrary file copy vulnerability in the mod copy module of ProFTPD, allowing for remote code execution and information disclosure without authentication. This can be exploit...
CVE-2017-7418
ProFTPD before 1.3.5e and 1.3.6 before 1.3.6rc5 controls whether the home directory of a user could contain a symbolic link through the AllowChrootSymlinks configuration option, but checks only the last path component when enforcing AllowChrootSymlinks. Attackers with local access could bypass th...
The vulnerability of the ProFTPd FTP server allows a hacker to compromise the integrity, accessibility, and confidentiality of information.
The vulnerability of the modtls module in the ProFTPd FTP server exists due to incorrect processing of the TLSDHParamFile directive. Exploiting this vulnerability allows a malicious actor to compromise the integrity, availability, and confidentiality of information...
CVE-2013-4359
Integer overflow in kbdint.c in modsftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service memory consumption via a large response count value in an authentication request, which triggers a large memory allocation...
CVE-2012-6095
ProFTPD before 1.3.5rc1, when using the UserOwner directive, allows local users to modify the ownership of arbitrary files via a race condition and a symlink attack on the 1 MKD or 2 XMKD commands...
CVE-2011-4130
Use-after-free vulnerability in the Response API in ProFTPD before 1.3.3g allows remote authenticated users to execute arbitrary code via vectors involving an error that occurs after an FTP data transfer...
Debian Security Advisory DSA 2185-1 (proftpd-dfsg)
The remote host is missing an update to proftpd-dfsg announced via advisory DSA 2185-1. OpenVAS Vulnerability Test $Id: deb21851.nasl 6613 2017-07-07 12:08:40Z cfischer $ Description: Auto-generated from advisory DSA 2185-1 proftpd-dfsg Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft In...