2 matches found
Debian DLA-2338-2 : proftpd-dfsg regression update
The update of proftpd-dfsg released as DLA-2338-1 incorrectly destroyed the memory pool in function sftpkexhandle in contrib/modsftp/kex.c which may cause a segmentation fault and thus prevent sftp connections. For Debian 9 stretch, this problem has been fixed in version 1.3.5e+r1.3.5b-4+deb9u2. ...
Wing FTP Server SFTP Connection Unspecified DoS
The remote FTP server is running a version of Wing FTP Server earlier than 3.8.0. Such versions reportedly are affected by a denial of service vulnerability that can be triggered when handling SFTP connections. A remote, unauthenticated attacker may be able to leverage this issue to crash the...