Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2013-0295)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.7AI score0.02985EPSS
Exploits2References4
ALT Linux
ALT Linux
added 2015/05/20 12:0 a.m.34 views

Security fix for the ALT Linux 8 package proftpd version 1.3.5-alt1.gita31d0ab

May 20, 2015 Konstantin Lepikhov 1.3.5-alt1.gita31d0ab - Updated to 1.3.5-a31d0ab GIT fixing following CVEs: + CVE-2013-4359. - Include the fix for Bug 4169 Unauthenticated copying of files via SITE CPFR/CPTO allowed by modcopy. - Configuration changes: + enabled pcre support; + enabled memcache...

5CVSS6.2AI score0.02985EPSS
Exploits2
seebug.org
seebug.org
added 2013/10/09 12:0 a.m.897 views

ProFTPD "mod_sftp/mod_sftp_pam"整数溢出拒绝服务漏洞

CVE ID: CVE-2013-4359 ProFTPD是一个Unix平台上或是类Unix平台上(如Linux, FreeBSD等)的FTP服务器程序。 ProFTPD 1.3.4d及其他在函数 "sftpkbdintrecvresponse" contrib/modsftp/kbdint.c中存在整数溢出错误,远程攻击者通过发送特制的TCP报文,可耗尽内存资源。要利用此漏洞需要启用 "modsftp" 和 "modsftppam"模块 0 ProFTPD 1.3.4d 厂商补丁: ProFTPD Project ---------------...

5CVSS0.1AI score0.02985EPSS
Exploits2
Mageia
Mageia
added 2013/10/05 5:58 p.m.40 views

Updated proftpd package fixes security vulnerability

A bug in ProFTPd's modsftp and modsftppam modules can be used to trigger a large heap allocation and exhaust all available system memory of the underlying operating system CVE-2013-4359...

5CVSS1.3AI score0.02985EPSS
Exploits2References2
OSV
OSV
added 2013/10/05 5:58 p.m.9 views

MGASA-2013-0295 Updated proftpd package fixes security vulnerability

A bug in ProFTPd's modsftp and modsftppam modules can be used to trigger a large heap allocation and exhaust all available system memory of the underlying operating system CVE-2013-4359...

5CVSS6.3AI score0.02985EPSS
Exploits2References3
OSV
OSV
added 2013/09/30 9:55 p.m.6 views

CVE-2013-4359

Integer overflow in kbdint.c in modsftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service memory consumption via a large response count value in an authentication request, which triggers a large memory allocation...

6.7AI score
Exploits0References6
OSV
OSV
added 2013/09/30 9:55 p.m.3 views

DEBIAN-CVE-2013-4359

Integer overflow in kbdint.c in modsftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service memory consumption via a large response count value in an authentication request, which triggers a large memory allocation...

5CVSS7.4AI score0.02985EPSS
Exploits2References1
CVE
CVE
added 2013/09/30 7:0 p.m.572 views

CVE-2013-4359

ProFTPD 1.3.4d and 1.3.5r3 are affected by an integer overflow in kbdint.c (mod_sftp) that can be triggered by a large response count in an authentication request, causing memory exhaustion and a DoS. The issue is confirmed across multiple advisories; remediation guidance in connected documents r...

5CVSS6.8AI score0.02985EPSS
Exploits2References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/09/30 12:0 a.m.23 views

Debian DSA-2767-1 : proftpd-dfsg - denial of service

Kingcope discovered that the modsftp and modsftppam modules of proftpd, a powerful modular FTP/SFTP/FTPS server, are not properly validating input, before making pool allocations. An attacker can use this flaw to conduct denial of service attacks against the system running proftpd resource...

5CVSS7.2AI score0.02985EPSS
Exploits2References5
Debian
Debian
added 2013/09/29 3:18 p.m.38 views

[SECURITY] [DSA 27671-1] proftpd-dfsg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2767-1 [email protected] http://www.debian.org/security/ Nico Golde September 29, 2013 http://www.debian.org/security/faq -...

5CVSS7.1AI score0.02985EPSS
Exploits2
OpenVAS
OpenVAS
added 2013/09/29 12:0 a.m.27 views

Debian Security Advisory DSA 2767-1 (proftpd-dfsg - denial of service)

Kingcope discovered that the modsftp and modsftppam modules of proftpd, a powerful modular FTP/SFTP/FTPS server, are not properly validating input, before making pool allocations. An attacker can use this flaw to conduct denial of service attacks against the system running proftpd resource...

5CVSS7.3AI score0.02985EPSS
Exploits2References1
Rows per page
Query Builder