533 matches found
CVE-2004-2259
vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service crash via a SIGCHLD signal during a malloc or free call, which is not re-entrant...
CVE-2004-2259
vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service crash via a SIGCHLD signal during a malloc or free call, which is not re-entrant...
DEBIAN-CVE-2004-2259
vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service crash via a SIGCHLD signal during a malloc or free call, which is not re-entrant...
Moderate: Red Hat Bug Fix Advisory: Updated vsftpd package fixes signal handling bug
An updated vsftpd package that fixes a signal handling bug which could cause the service to stop accepting connections is now available. vsftpd is an FTP File Transfer Protocol daemon. vsftpd was calling unsafe functions from within signal handlers; under heavy load, this could lead to deadlock,...
CVE-2004-0042
vsftpd 1.1.3 generates different error messages depending on whether or not a valid username exists, which allows remote attackers to identify valid usernames...
DEBIAN-CVE-2004-0042
vsftpd 1.1.3 generates different error messages depending on whether or not a valid username exists, which allows remote attackers to identify valid usernames...
CVE-2004-0042
vsftpd 1.1.3 generates different error messages depending on whether or not a valid username exists, which allows remote attackers to identify valid usernames...
CVE-2004-0042
vsftpd 1.1.3 generates different error messages depending on whether or not a valid username exists, which allows remote attackers to identify valid usernames...
CVE-2004-0042
CVE-2004-0042 concerns vsftpd 1.1.3, where the login error messages differ based on whether a supplied username exists. The underlying effect is information disclosure: remote attackers can determine valid usernames on the server. The available connected sources corroborate the version (vsftpd 1....
CVE-2003-0135
vsftpd FTP daemon in Red Hat Linux 9 is not compiled against TCP wrappers tcpwrappers but is installed as a standalone service, which inadvertently prevents vsftpd from restricting access as intended...
CVE-2003-0135
vsftpd FTP daemon in Red Hat Linux 9 is not compiled against TCP wrappers tcpwrappers but is installed as a standalone service, which inadvertently prevents vsftpd from restricting access as intended...
CVE-2003-0135
CVE-2003-0135 : The vsftpd FTP daemon on Red Hat Linux 9 is not compiled against TCP wrappers and is installed as a standalone service, which prevents it from restricting access as intended. Root cause: lack of wrapper-based access control. Impact and remediation details are not specified in the ...
CVE-2003-0135
vsftpd FTP daemon in Red Hat Linux 9 is not compiled against TCP wrappers tcpwrappers but is installed as a standalone service, which inadvertently prevents vsftpd from restricting access as intended...