2 matches found
CVE-2015-5917
CVE-2015-5917 affects Apple OS X via tnftpd (formerly Lukemftpd). The glob processing vulnerability in tnftpd can cause memory consumption and daemon outage (DoS) when handling a STAT command containing crafted {..,..,..}/* patterns, affecting OS X versions prior to 10.11. Connected sources corro...
CVE-2023-45198
CVE-2023-45198 affects ftpd before NetBSD-ftpd 20230930 and tnftpd before 20231001, enabling leakage of host filesystem information prior to authentication via MLSD/MLST. Red Hat/EUVD entries corroborate the issue. Remediation is to upgrade to NetBSD-ftpd 20231001 or later (or apply equivalent ve...