Debian Security Advisory DSA 2767-1 (proftpd-dfsg - denial of service)

Kingcope discovered that the modsftp and modsftppam modules of proftpd, a powerful modular FTP/SFTP/FTPS server, are not properly validating input, before making pool allocations. An attacker can use this flaw to conduct denial of service attacks against the system running proftpd resource...

DSA-2767-1 proftpd-dfsg - denial of service

Bulletin has no description...

Debian: Security Advisory (DSA-2767-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GLSA-201309-15 : ProFTPD: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201309-15 ProFTPD: Multiple vulnerabilities Multiple vulnerabilities have been discovered in ProFTPD. Please review the CVE identifiers referenced below for details. Impact : A context-dependent attacker could possibly execute...

[SECURITY] Fedora 19 Update: proftpd-1.3.4d-4.fc19

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

[SECURITY] Fedora 20 Update: proftpd-1.3.4d-4.fc20

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

[SECURITY] Fedora 18 Update: proftpd-1.3.4d-4.fc18

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

Fedora 18 : proftpd-1.3.4d-4.fc18 (2013-16810)

This update addresses an issue with modsftp and modsftppam in which a malicious client could cause the server to make extremely large memory requests and potentially crash. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

Fedora Update for proftpd FEDORA-2013-16798

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora Update for proftpd FEDORA-2013-16810

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 20 : proftpd-1.3.4d-4.fc20 (2013-16790)

This update addresses an issue with modsftp and modsftppam in which a malicious client could cause the server to make extremely large memory requests and potentially crash. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

Fedora Update for proftpd FEDORA-2013-16810

Check for the Version of proftpd OpenVAS Vulnerability Test Fedora Update for proftpd FEDORA-2013-16810 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

ProFTPD: Multiple vulnerabilities

Background ProFTPD is an advanced and very configurable FTP server. Description Multiple vulnerabilities have been discovered in ProFTPD. Please review the CVE identifiers referenced below for details. Impact A context-dependent attacker could possibly execute arbitrary code with the privileges o...

Fedora 19 : proftpd-1.3.4d-4.fc19 (2013-16798)

This update addresses an issue with modsftp and modsftppam in which a malicious client could cause the server to make extremely large memory requests and potentially crash. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory...

Fedora Update for proftpd FEDORA-2013-16798

Check for the Version of proftpd OpenVAS Vulnerability Test Fedora Update for proftpd FEDORA-2013-16798 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

ProFTPD FTP Command Handling Symlink Arbitrary File Overwrite

The remote host is using ProFTPD, a free FTP server for Unix and Linux. According to its banner, the version of ProFTPD installed on the remote host earlier than 1.3.4c. As such, it is potentially affected by a race condition error that does not securely create temporary files related to symlinks...

Fedora Update for proftpd FEDORA-2013-0468

Check for the Version of proftpd OpenVAS Vulnerability Test Fedora Update for proftpd FEDORA-2013-0468 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora 17 : proftpd-1.3.4b-5.fc17 (2013-0483)

Jann Horn reported that there is a possible race condition in the handling of the MKD/XMKD FTP commands, when the UserOwner directive is involved, and the attacker is on the same physical machine as a running proftpd. This race applies to modsftp and the handling of the MKDIR SFTP request as well...

Fedora Update for proftpd FEDORA-2013-0437

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora Update for proftpd FEDORA-2013-0437

Check for the Version of proftpd OpenVAS Vulnerability Test Fedora Update for proftpd FEDORA-2013-0437 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...