11 matches found
Mageia: Security Advisory (MGASA-2013-0295)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security fix for the ALT Linux 8 package proftpd version 1.3.5-alt1.gita31d0ab
May 20, 2015 Konstantin Lepikhov 1.3.5-alt1.gita31d0ab - Updated to 1.3.5-a31d0ab GIT fixing following CVEs: + CVE-2013-4359. - Include the fix for Bug 4169 Unauthenticated copying of files via SITE CPFR/CPTO allowed by modcopy. - Configuration changes: + enabled pcre support; + enabled memcache...
ProFTPD "mod_sftp/mod_sftp_pam"整数溢出拒绝服务漏洞
CVE ID: CVE-2013-4359 ProFTPD是一个Unix平台上或是类Unix平台上(如Linux, FreeBSD等)的FTP服务器程序。 ProFTPD 1.3.4d及其他在函数 "sftpkbdintrecvresponse" contrib/modsftp/kbdint.c中存在整数溢出错误,远程攻击者通过发送特制的TCP报文,可耗尽内存资源。要利用此漏洞需要启用 "modsftp" 和 "modsftppam"模块 0 ProFTPD 1.3.4d 厂商补丁: ProFTPD Project ---------------...
Updated proftpd package fixes security vulnerability
A bug in ProFTPd's modsftp and modsftppam modules can be used to trigger a large heap allocation and exhaust all available system memory of the underlying operating system CVE-2013-4359...
MGASA-2013-0295 Updated proftpd package fixes security vulnerability
A bug in ProFTPd's modsftp and modsftppam modules can be used to trigger a large heap allocation and exhaust all available system memory of the underlying operating system CVE-2013-4359...
CVE-2013-4359
Integer overflow in kbdint.c in modsftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service memory consumption via a large response count value in an authentication request, which triggers a large memory allocation...
DEBIAN-CVE-2013-4359
Integer overflow in kbdint.c in modsftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service memory consumption via a large response count value in an authentication request, which triggers a large memory allocation...
CVE-2013-4359
ProFTPD 1.3.4d and 1.3.5r3 are affected by an integer overflow in kbdint.c (mod_sftp) that can be triggered by a large response count in an authentication request, causing memory exhaustion and a DoS. The issue is confirmed across multiple advisories; remediation guidance in connected documents r...
Debian DSA-2767-1 : proftpd-dfsg - denial of service
Kingcope discovered that the modsftp and modsftppam modules of proftpd, a powerful modular FTP/SFTP/FTPS server, are not properly validating input, before making pool allocations. An attacker can use this flaw to conduct denial of service attacks against the system running proftpd resource...
[SECURITY] [DSA 27671-1] proftpd-dfsg security update
------------------------------------------------------------------------- Debian Security Advisory DSA-2767-1 [email protected] http://www.debian.org/security/ Nico Golde September 29, 2013 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 2767-1 (proftpd-dfsg - denial of service)
Kingcope discovered that the modsftp and modsftppam modules of proftpd, a powerful modular FTP/SFTP/FTPS server, are not properly validating input, before making pool allocations. An attacker can use this flaw to conduct denial of service attacks against the system running proftpd resource...