Lucene search
K

1565 matches found

FreeBSD
FreeBSD
added 2010/11/02 12:0 a.m.47 views

proftpd -- remote code execution vulnerability

Tippingpoint reports: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ProFTPD. Authentication is not required to exploit this vulnerability. The flaw exists within the proftpd server component which listens by default on TCP port 21. When readin...

10CVSS9.7AI score0.91303EPSS
Exploits10References1
Slackware Linux
Slackware Linux
added 2010/03/31 9:3 p.m.45 views

[slackware-security] openssl

New openssl packages are available for Slackware 11.0, 12.0, 12.1, 12.2, 13.0, and -current to fix security issues. More details about the issues may be found in the Common Vulnerabilities and Exposures CVE database: https://vulners.com/cve/CVE-2010-0433 https://vulners.com/cve/CVE-2010-0740 A...

5CVSS7.5AI score0.2035EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2010/02/24 12:0 a.m.30 views

Debian DSA-1925-1 : proftpd-dfsg - insufficient input validation

It has been discovered that proftpd-dfsg, a virtual-hosting FTP daemon, does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 client certificate, when the dNSNameRequired TLS option is enabled. %NASLMINLEVEL 70300 C Tenable Network Security,...

5.8CVSS6.4AI score0.057EPSS
Exploits1References2
Debian
Debian
added 2010/01/26 9:30 p.m.64 views

[Backports-security-announce] Security Update for proftpd-dfsg

Francesco P. Lovergine uploaded new packages for proftpd-dfsg which fixed the following security problem: CVE-2009-3639 The modtls module in ProFTPD before 1.3.2b, and 1.3.3 before 1.3.3rc2, when the dNSNameRequired TLS option is enabled, does not properly handle a \0 character in a domain name i...

5.9CVSS2.8AI score0.05741EPSS
Exploits5
Debian
Debian
added 2010/01/26 9:6 p.m.44 views

[Backports-security-announce] Security Update for proftpd-dfsg

Francesco P. Lovergine uploaded new packages for proftpd-dfsg which fixed the following security problem: CVE-2009-3639 The modtls module in ProFTPD before 1.3.2b, and 1.3.3 before 1.3.3rc2, when the dNSNameRequired TLS option is enabled, does not properly handle a \0 character in a domain name i...

6.8CVSS6.9AI score0.05741EPSS
Exploits5
Debian
Debian
added 2010/01/26 9:6 p.m.40 views

[Backports-security-announce] Security Update for proftpd-dfsg

Francesco P. Lovergine uploaded new packages for proftpd-dfsg which fixed the following security problem: CVE-2009-3639 The modtls module in ProFTPD before 1.3.2b, and 1.3.3 before 1.3.3rc2, when the dNSNameRequired TLS option is enabled, does not properly handle a \0 character in a domain name i...

6.8CVSS2.2AI score0.05741EPSS
Exploits5
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.88 views

Fedora Core 11 FEDORA-2009-13236 (proftpd)

The remote host is missing an update to proftpd announced via advisory FEDORA-2009-13236. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

9.8CVSS7.8AI score0.87264EPSS
Exploits15References2
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.36 views

Fedora Core 12 FEDORA-2009-13250 (proftpd)

The remote host is missing an update to proftpd announced via advisory FEDORA-2009-13250. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

9.8CVSS7.8AI score0.87264EPSS
Exploits14References2
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.30 views

Fedora Core 11 FEDORA-2009-13236 (proftpd)

The remote host is missing an update to proftpd announced via advisory FEDORA-2009-13236. OpenVAS Vulnerability Test $Id: fcore200913236.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-13236 proftpd Authors: Thomas Reinke Copyright: Copyright c 2009...

5.8CVSS0.6AI score0.87264EPSS
Exploits15References1
OpenVAS
OpenVAS
added 2009/12/30 12:0 a.m.50 views

Fedora Core 12 FEDORA-2009-13250 (proftpd)

The remote host is missing an update to proftpd announced via advisory FEDORA-2009-13250. OpenVAS Vulnerability Test $Id: fcore200913250.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-13250 proftpd Authors: Thomas Reinke Copyright: Copyright c 2009...

5.8CVSS0.4AI score0.87264EPSS
Exploits14References1
Tenable Nessus
Tenable Nessus
added 2009/12/28 12:0 a.m.64 views

Fedora 11 : proftpd-1.3.2c-1.fc11 (2009-13236)

This update addresses CVE-2009-3555 SSL/TLS renegotiation vulnerability, mitigating the problem by refusing all client-initiated SSL/TLS session renegotiations. This update to the latest maintenance release also fixes a number of bugs recorded in the proftpd bug tracker: - SSL/TLS renegotiation...

9.8CVSS7.7AI score0.87264EPSS
Exploits14References3
Tenable Nessus
Tenable Nessus
added 2009/12/28 12:0 a.m.81 views

Fedora 12 : proftpd-1.3.2c-1.fc12 (2009-13250)

This update addresses CVE-2009-3555 SSL/TLS renegotiation vulnerability, mitigating the problem by refusing all client-initiated SSL/TLS session renegotiations. This update to the latest maintenance release also fixes a number of bugs recorded in the proftpd bug tracker: - SSL/TLS renegotiation...

9.8CVSS7.7AI score0.87264EPSS
Exploits14References3
Fedora
Fedora
added 2009/12/27 8:35 p.m.43 views

[SECURITY] Fedora 11 Update: proftpd-1.3.2c-1.fc11

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

5.8CVSS0.6AI score0.87264EPSS
Exploits15
Fedora
Fedora
added 2009/12/27 8:24 p.m.53 views

[SECURITY] Fedora 12 Update: proftpd-1.3.2c-1.fc12

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

5.8CVSS0.6AI score0.87264EPSS
Exploits14
Tenable Nessus
Tenable Nessus
added 2009/12/23 12:0 a.m.28 views

Mandriva Linux Security Advisory : proftpd (MDVSA-2009:337)

A vulnerability has been identified and corrected in proftpd : The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet Information Services IIS 7.0, modssl in the Apache HTTP Server 2.2.14 and earlier, OpenSSL before 0.9.8l, GnuTLS 2.8.5 and earlier, Mozilla...

9.8CVSS7.5AI score0.87264EPSS
Exploits14References2
securityvulns
securityvulns
added 2009/12/22 12:0 a.m.93 views

[ MDVSA-2009:337 ] proftpd

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:337 http://www.mandriva.com/security/ Package : proftpd Date : December 22, 2009 Affected: 2008.0, 2009.0, 2009.1, 2010.0, Corporate 4.0, Enterprise Server 5.0 Problem Description: A vulnerability has been...

5.8CVSS7.3AI score0.87264EPSS
Exploits14
seebug.org
seebug.org
added 2009/12/15 12:0 a.m.205 views

ProFTPD TLS会话重协商明文数据注入漏洞

CVE ID: CVE-2009-3555 ProFTPD是一款开放源代码FTP服务程序。 ProFTPD的模块modtls存在OpenSSL的会话可重新协商选项的漏洞,导致攻击者可以在会话数据流中插入明文数据,操纵数据交互。 ProFTPD Project ProFTPD 1.3.x 厂商补丁: ProFTPD Project --------------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.proftpd.org/docs/RELEASENOTES-1.3.2c...

5.8CVSS0.87264EPSS
Exploits14
OpenVAS
OpenVAS
added 2009/11/23 12:0 a.m.24 views

Fedora Core 11 FEDORA-2009-11649 (proftpd)

The remote host is missing an update to proftpd announced via advisory FEDORA-2009-11649. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

5.8CVSS6AI score0.057EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2009/11/23 12:0 a.m.29 views

Fedora Core 10 FEDORA-2009-11666 (proftpd)

The remote host is missing an update to proftpd announced via advisory FEDORA-2009-11666. OpenVAS Vulnerability Test $Id: fcore200911666.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-11666 proftpd Authors: Thomas Reinke Copyright: Copyright c 2009...

5.8CVSS0.7AI score0.057EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2009/11/23 12:0 a.m.32 views

Fedora Core 10 FEDORA-2009-11666 (proftpd)

The remote host is missing an update to proftpd announced via advisory FEDORA-2009-11666. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...

5.8CVSS6AI score0.057EPSS
Exploits1References2
Rows per page
Query Builder