Preemptive Protection against ProFTPD with mod_sql pre-authentication Vulnerability

A pre-authentication remote root heap overflow vulnerability was reported in the ProFTPD FTP Server. ProFTPD is a configurable GPL-licensed FTP server software...

FreeBSD : proftpd -- Compromised source packages backdoor (ed7fa1b4-ff59-11df-9759-080027284eaa)

The ProFTPD Project team reports : The security issue is caused due to the distribution of compromised ProFTPD 1.3.3c source code packages via the project's main FTP server and all of the mirror servers, which contain a backdoor allowing remote root access. %NASLMINLEVEL 70300 C Tenable Network...

ProFTPD Compromised Source Packages Trojaned Distribution

The remote host is using ProFTPD, a free FTP server for Unix and Linux. The version of ProFTPD installed on the remote host has been compiled with a backdoor in 'src/help.c', apparently related to a compromise of the main distribution server for the ProFTPD project on the 28th of November 2010...

Week in Security: Wikileaks Extravaganza, New Ransomware and Open-Source Attacks

It was difficult to go anywhere this week without hearing about the flurry of activity surrounding the Wikileaks data dump. A slew of denial-of-service attacks followed soon after, while new ransomware and attacks on open-source software filled out the rest of the week’s news. Read on for the wee...

ProFTPD 1.3.3c compromised source remote root Trojan

Exploit for php platform in category remote exploits ==================================================== ProFTPD 1.3.3c compromised source remote root Trojan ==================================================== == ProFTPD Compromise Report == On Sunday, the 28th of November 2010 around 20:00 UTC...

ProFTPD 1.3.3c Trojan Source Code

== ProFTPD Compromise Report == On Sunday, the 28th of November 2010 around 20:00 UTC the main distribution server of the ProFTPD project was compromised. The attackers most likely used an unpatched security issue in the FTP daemon to gain access to the server and used their privileges to replace...

ProFTPD-1.3.3c Backdoor Command Execution

$Id: proftpd133cbackdoor.rb 11210 2010-12-02 22:33:37Z mc $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

ProFTPd-1.3.3c - Backdoor Command Execution (Metasploit)

$Id: proftpd133cbackdoor.rb 11214 2010-12-03 12:34:38Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

ProFTPD-1.3.3c Backdoor Command Execution

This module exploits a malicious backdoor that was added to the ProFTPD download archive. This backdoor was present in the proftpd-1.3.3c.tar.bz2|gz archive between November 28th 2010 and 2nd December 2010. This module requires Metasploit: https://metasploit.com/download Current source:...

ProFTPD Server Backdoored

The main server used to distribute the open-source ProFTPD software was compromised over the weekend through the use of a bug in the FTP software itself, and a backdoored version of the software was uploaded and distributed for several days as a result. Because of the compromise, the backdoored...

Fedora Update for proftpd FEDORA-2010-17091

Check for the Version of proftpd OpenVAS Vulnerability Test Fedora Update for proftpd FEDORA-2010-17091 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

ProFTPd 1.3.3c - Compromised Source Backdoor Remote Code Execution

ProFTPd 1.3.3c - Compromised Source Backdoor Remote Code Execution == ProFTPD Compromise Report == On Sunday, the 28th of November 2010 around 20:00 UTC the main distribution server of the ProFTPD project was compromised. The attackers most likely used an unpatched security issue in the FTP daemo...

ProFTPd 1.3.3c - Compromised Source Backdoor Remote Code Execution

== ProFTPD Compromise Report == On Sunday, the 28th of November 2010 around 20:00 UTC the main distribution server of the ProFTPD project was compromised. The attackers most likely used an unpatched security issue in the FTP daemon to gain access to the server and used their privileges to replace...

ProFTPd 1.3.2 rc3 < 1.3.3b (FreeBSD) - Telnet IAC Buffer Overflow (Metasploit)

$Id: proftptelnetiac.rb 11208 2010-12-02 21:10:03Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

Fedora Update for proftpd FEDORA-2010-17091

The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

ProFTPD Backdoor Unauthorized Access Vulnerability (Dec 2010) - Active Check

ProFTPD is prone to an unauthorized access vulnerability due to a backdoor in certain versions of the application. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

ProFTPD < 1.3.3c Multiple Vulnerabilities

ProFTPD is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:proftpd:proftpd"; ifdescription...

ProFTPD < 1.3.2rc3 DoS Vulnerability

ProFTPD is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:proftpd:proftpd";...

proftpd -- Compromised source packages backdoor

The ProFTPD Project team reports: The security issue is caused due to the distribution of compromised ProFTPD 1.3.3c source code packages via the project's main FTP server and all of the mirror servers, which contain a backdoor allowing remote root access...

FreeBSD : proftpd -- remote code execution vulnerability (533d20e7-f71f-11df-9ae1-000bcdf0a03b)

Tippingpoint reports : This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ProFTPD. Authentication is not required to exploit this vulnerability. The flaw exists within the proftpd server component which listens by default on TCP port 21. When readi...