Lucene search
K

1565 matches found

seebug.org
seebug.org
added 2006/11/23 12:0 a.m.37 views

ProFTPD CommandBufferSize远程拒绝服务漏洞

ProFTPD是一款开放源代码FTP服务程序。 ProFTPD在处理用户请求时存在漏洞,如果启用了CommandBufferSize选项的话,则ProFTPD的main.c文件中cmdloop函数就可能没有正确验证FTP命令的缓冲区大小限制,导致拒绝服务。 ProFTPD Project ProFTPD 1.3 Debian ------ Debian已经为此发布了一个安全公告(DSA-1218-1)以及相应补丁: DSA-1218-1:New proftpd packages fix denial of service...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/11/22 12:0 a.m.20 views

Debian DSA-1218-1 : proftpd - programming error

It was discovered that the proftpd FTP daemon performs insufficient validation of FTP command buffer size limits, which may lead to denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security...

7.5CVSS5.8AI score0.0959EPSS
Exploits0References3
Debian
Debian
added 2006/11/21 6:10 p.m.20 views

[SECURITY] [DSA 1218-1] New proftpd packages fix denial of service

-------------------------------------------------------------------------- Debian Security Advisory DSA 1218-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff November 21st, 2006 http://www.debian.org/security/faq -...

10CVSS6.2AI score0.74254EPSS
Exploits4
OSV
OSV
added 2006/11/21 12:0 a.m.13 views

DSA-1218 proftpd

Bulletin has no description...

7.5CVSS6.3AI score0.0959EPSS
Exploits0
OSV
OSV
added 2006/11/21 12:0 a.m.2 views

DSA-1218-1 proftpd

Bulletin has no description...

7.5CVSS6AI score0.0959EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/11/20 12:0 a.m.17 views

FreeBSD : proftpd -- Remote Code Execution Vulnerability (cca97f5f-7435-11db-91de-0008743bf21a)

FrSIRT reports : A vulnerability has been identified in ProFTPD, which could be exploited by attackers to cause a denial of service or execute arbitrary commands. This flaw is due to a buffer overflow error in the 'main.c' file where the 'cmdbufsize' size of the buffer used to handle FTP commands...

5.9AI score
Exploits0References2
securityvulns
securityvulns
added 2006/11/17 12:0 a.m.41 views

[OpenPKG-SA-2006.035] OpenPKG Security Advisory (proftpd)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 OpenPKG Security Advisory OpenPKG GmbH http://openpkg.org/security/ http://openpkg.com OpenPKG-SA-2006.035 2006-11-16 Package: proftpd Vulnerability: denial of service OpenPKG Specific: no Affected Series: Affected Packages: Corrected Packages:...

10CVSS9.4AI score0.74254EPSS
Exploits4
ALT Linux
ALT Linux
added 2006/11/14 12:0 a.m.43 views

Security fix for the ALT Linux 8 package proftpd version 1.3.0rel-alt1.3

Nov. 14, 2006 Konstantin Lepikhov 1.3.0rel-alt1.3 - fix null reference in CVE-2006-5815 patch made by upstream...

10CVSS7AI score0.74254EPSS
Exploits4
ALT Linux
ALT Linux
added 2006/11/13 12:0 a.m.16 views

Security fix for the ALT Linux 8 package proftpd version 1.3.0rel-alt1.2

Nov. 13, 2006 Konstantin Lepikhov 1.3.0rel-alt1.2 - Security fix for CVE-2006-5815 "CommandBufferSize" Directive Remote Code Execution Vulnerability...

10CVSS7.3AI score0.74254EPSS
Exploits4
securityvulns
securityvulns
added 2006/11/10 12:0 a.m.89 views

[SA22803] ProFTPD Unspecified Vulnerability

TITLE: ProFTPD Unspecified Vulnerability SECUNIA ADVISORY ID: SA22803 VERIFY ADVISORY: http://secunia.com/advisories/22803/ CRITICAL: Moderately critical IMPACT: System access WHERE: From remote SOFTWARE: ProFTPD 1.3.x http://secunia.com/product/5430/ DESCRIPTION: Evgeny Legerov has reported a...

0.9AI score
Exploits0
FreeBSD
FreeBSD
added 2006/11/10 12:0 a.m.40 views

proftpd -- remote code execution vulnerabilities

The proftpd development team reports that several remote buffer overflows had been found in the proftpd server...

10CVSS6.6AI score0.74254EPSS
Exploits4
FreeBSD
FreeBSD
added 2006/11/10 12:0 a.m.23 views

proftpd -- Remote Code Execution Vulnerability

FrSIRT reports: A vulnerability has been identified in ProFTPD, which could be exploited by attackers to cause a denial of service or execute arbitrary commands. This flaw is due to a buffer overflow error in the "main.c" file where the "cmdbufsize" size of the buffer used to handle FTP commands...

5.3AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2006/11/08 11:7 p.m.22 views

CVE-2006-5815

Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vdproftpd.pm, a "ProFTPD remote exploit."...

10CVSS6.9AI score0.74254EPSS
Exploits4References1
NVD
NVD
added 2006/11/08 11:7 p.m.13 views

CVE-2006-5815

Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vdproftpd.pm, a "ProFTPD remote exploit."...

10CVSS7.3AI score0.74254EPSS
Exploits4References25
OSV
OSV
added 2006/11/08 11:7 p.m.2 views

CVE-2006-5815

Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vdproftpd.pm, a "ProFTPD remote exploit."...

7.4AI score
Exploits0References25
OSV
OSV
added 2006/11/08 11:7 p.m.1 views

DEBIAN-CVE-2006-5815

Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vdproftpd.pm, a "ProFTPD remote exploit."...

10CVSS6.1AI score0.74254EPSS
Exploits4References1
Cvelist
Cvelist
added 2006/11/08 11:0 p.m.19 views

CVE-2006-5815

Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vdproftpd.pm, a "ProFTPD remote exploit."...

7.3AI score0.74254EPSS
Exploits4References25
CVE
CVE
added 2006/11/08 11:0 p.m.94 views

CVE-2006-5815

ProFTPD 1.3.0 and earlier is affected by a stack-based buffer overflow in the sreplace function, enabling remote exploitation (likely by authenticated users) to cause denial of service and potentially execute arbitrary code. Public evidence includes exploit modules (Metasploit) for ProFTPD 1.2–1....

10CVSS7.2AI score0.74254EPSS
Exploits4References25Affected Software1
Debian CVE
Debian CVE
added 2006/11/08 11:0 p.m.26 views

CVE-2006-5815

Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vdproftpd.pm, a "ProFTPD remote exploit."...

10CVSS7.3AI score0.74254EPSS
Exploits4
Positive Technologies
Positive Technologies
added 2006/11/08 12:0 a.m.3 views

PT-2006-1005 · Proftpd +1 · Proftpd +1

Name of the Vulnerable Software and Affected Versions: ProFTPD versions 1.3.0a and earlier Description: The issue is related to the improper setting of the buffer size limit when CommandBufferSize is specified in the configuration file, potentially leading to an off-by-two buffer underflow...

10CVSS6.8AI score0.74254EPSS
Exploits5References23
Rows per page
Query Builder