The vulnerability of the `make_ftp_cmd` function in the `main.c` file of the ProFTPD FTP server allows a hacker to cause a service failure.

The vulnerability of the makeftpcmd function in the main.c file of the ProFTPD FTP server involves single-byte reads outside of the allowed range. Exploiting this vulnerability could allow a malicious actor to cause service failures...

ROS-20240408-18

A vulnerability in the makeftpcmd component of the ProFTPD FTP server is related to a single-byte read outside the of the allowed range. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service...

EulerOS 2.0 SP11 : proftpd (EulerOS-SA-2024-1222)

According to the versions of the proftpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass...

EulerOS 2.0 SP11 : proftpd (EulerOS-SA-2024-1244)

According to the versions of the proftpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass...

openSUSE 15 Security Update : proftpd (openSUSE-SU-2024:0008-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0008-1 advisory. - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass...

CVE-2023-51713

makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...

Out-of-bounds

makeftpcmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics...

CVE-2023-51713

ProFTPD (make_ftp_cmd in main.c) is affected by CVE-2023-51713 in versions before 1.3.8a due to a one-byte out-of-bounds read caused by mishandling of quote/backslash semantics, leading to daemon crashes. Affected advisories reference ProFTPD before 1.3.8a across multiple vendors (Debian, Ubuntu,...

ProFTPd Security Vulnerability

ProFTPd is a highly configurable open source FTP server software. A security vulnerability exists in ProFTPd versions prior to 1.3.8a, which stems from improper handling of the semantics of the makeftpcmd function in the file main.c, resulting in an out-of-bounds read vulnerability and a daemon...