Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2020/01/15 12:0 a.m.43 views

openSUSE Security Update : proftpd (openSUSE-2020-31)

This update for proftpd fixes the following issues : - GeoIP has been discontinued by Maxmind boo1156210 This update removes module build for geoip see https://support.maxmind.com/geolite-legacy-discontinuati on-notice/ - CVE-2019-19269: Fixed a NULL pointer dereference may occur when validating...

9.8CVSS6.6AI score0.57606EPSS
Exploits2References13
OPENSUSE Linux
OPENSUSE Linux
added 2020/01/13 12:0 a.m.67 views

Security update for proftpd (moderate)

openSUSE Security Update: Security update for proftpd Announcement ID: openSUSE-SU-2020:0031-1 Rating: moderate References: 1113041 1144056 1154600 1155834 1156210 1157798 1157803 Cross-References: CVE-2017-7418 CVE-2019-12815 CVE-2019-18217 CVE-2019-19269 CVE-2019-19270 Affected Products: openSU...

9.8CVSS6.7AI score0.57606EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2017/04/18 12:0 a.m.67 views

openSUSE Security Update : proftpd (openSUSE-2017-481)

This update for proftpd to version 1.3.5d fixes the following issues : This security issue was fixed : - CVE-2017-7418: ProFTPD checked only the last path component when enforcing AllowChrootSymlinks. Attackers with local access could bypass the AllowChrootSymlinks control by replacing a path...

5.5CVSS6AI score0.00419EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2017/04/06 12:0 a.m.110 views

ProFTPD < 1.3.5e, 1.3.6 < 1.3.6rc5 Local Security Bypass Vulnerability

ProFTPD server is prone to local security bypass vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:proftpd:proftpd";...

5.5CVSS5.5AI score0.00419EPSS
Exploits0References5
OSV
OSV
added 2017/04/04 5:59 p.m.2 views

DEBIAN-CVE-2017-7418

ProFTPD before 1.3.5e and 1.3.6 before 1.3.6rc5 controls whether the home directory of a user could contain a symbolic link through the AllowChrootSymlinks configuration option, but checks only the last path component when enforcing AllowChrootSymlinks. Attackers with local access could bypass th...

5.5CVSS5.4AI score0.00419EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2017/04/04 5:0 p.m.27 views

CVE-2017-7418

ProFTPD before 1.3.5e and 1.3.6 before 1.3.6rc5 controls whether the home directory of a user could contain a symbolic link through the AllowChrootSymlinks configuration option, but checks only the last path component when enforcing AllowChrootSymlinks. Attackers with local access could bypass th...

5.5CVSS5.4AI score0.00419EPSS
Exploits0
FreeBSD
FreeBSD
added 2017/03/06 12:0 a.m.50 views

proftpd -- user chroot escape vulnerability

NVD reports: ProFTPD ... controls whether the home directory of a user could contain a symbolic link through the AllowChrootSymlinks configuration option, but checks only the last path component when enforcing AllowChrootSymlinks. Attackers with local access could bypass the AllowChrootSymlinks...

5.5CVSS1.2AI score0.00419EPSS
Exploits0References1
Rows per page
Query Builder