Lucene search
Ubuntu.comUB:CVE-2011-0762HistoryMar 02, 2011 - 12:00 a.m.
CVE-2011-0762
2011-03-0200:00:00
ubuntu.com
ubuntu.com
23
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.29 Low
EPSS
Percentile
96.8%
The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3
allows remote authenticated users to cause a denial of service (CPU
consumption and process slot exhaustion) via crafted glob expressions in
STAT commands in multiple FTP sessions, a different vulnerability than
CVE-2010-2632.
Notes
| Author | Note |
|---|---|
| mdeslaur | PoC: http://www.exploit-db.com/exploits/16270/ PoC: http://cxib.net/stuff/vspoc232.c |
Related
cve
cve
nessus
nessus
Mandriva Linux Security Advisory : vsftpd (MDVSA-2011:049)
2011-03-22 00:00:00
Solaris 9 (x86) : 114565-16
2004-07-12 00:00:00
RHEL 4 / 5 / 6 : vsftpd (RHSA-2011:0337)
2011-03-10 00:00:00
debiancve
debiancve
CVE-2011-0762
2011-03-02 20:00:00
CVE-2010-4756
2011-03-02 20:00:00
openvas
openvas
Mandriva Update for vsftpd MDVSA-2011:049 (vsftpd)
2011-03-24 00:00:00
Mandriva Update for vsftpd MDVSA-2011:049 (vsftpd)
2011-03-24 00:00:00
RedHat Update for vsftpd RHSA-2011:0337-01
2011-03-15 00:00:00
prion
prion
Design/Logic Flaw
2011-03-02 20:00:00
Code injection
2011-01-19 16:00:00
Code injection
2011-03-02 20:00:00
packetstorm
packetstorm
Vsftpd 2.3.2 Denial Of Service
2011-03-01 00:00:00
Multiple Vendors libc/glob(3) Resource Exhaustion
2010-10-08 00:00:00
Multiple Vendors libc/glob(3) GLOB_BRACE|GLOB_LIMIT Memory Exhaustion
2011-05-03 00:00:00
securityvulns
securityvulns
vsftpd 2.3.2 remote denial-of-service
2011-03-03 00:00:00
FreeBSD Security Advisory FreeBSD-SA-13:02.libc
2013-02-24 00:00:00
MacOSX 10.8.3 ftpd Remote Resource Exhaustion
2013-04-15 00:00:00
oraclelinux
oraclelinux
vsftpd security update
2011-03-09 00:00:00
ubuntu
ubuntu
vsftpd vulnerability
2011-03-29 00:00:00
exploitpack
exploitpack
libcglob(3) - Resource Exhaustion Remote ftpd-anonymous (Denial of Service)
2010-10-07 00:00:00
vsftpd 2.3.2 - Denial of Service
2011-03-02 00:00:00
FreeBSD 9.1 - ftpd Remote Denial of Service
2013-02-05 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-13:02.libc
2013-02-19 00:00:00
freebsd
freebsd
FreeBSD -- glob(3) related resource exhaustion
2013-02-19 00:00:00
seebug
seebug
Multiple Vendors libc/glob(3) Resource Exhaustion (+0day remote ftpd-anon)
2014-07-01 00:00:00
vsftpd FTP Server "ls.c"θΏη¨ζη»ζε‘ζΌζ΄
2011-03-03 00:00:00
vsftpd 2.3.2 - Denial of Service Vulnerability
2014-07-01 00:00:00
thn
thn
fedora
fedora
[SECURITY] Fedora 15 Update: vsftpd-2.3.4-1.fc15
2011-03-16 04:05:02
[SECURITY] Fedora 14 Update: vsftpd-2.3.4-1.fc14
2011-03-14 10:23:34
[SECURITY] Fedora 13 Update: vsftpd-2.3.4-1.fc13
2011-03-14 10:23:26
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:59:37
redhat
redhat
(RHSA-2011:0337) Important: vsftpd security update
2011-03-09 00:00:00
centos
centos
vsftpd security update
2011-03-10 09:59:53
gentoo
gentoo
vsftpd: Denial of service
2011-10-10 00:00:00
exploitdb
exploitdb
vsftpd 2.3.2 - Denial of Service
2011-03-02 00:00:00
FreeBSD 9.1 - 'ftpd' Remote Denial of Service
2013-02-05 00:00:00
osv
osv
vsftpd - denial of service
2011-09-19 00:00:00
f5
f5
K15082 : OpenSSH vulnerability CVE-2010-4755
2014-03-17 00:00:00
SOL15082 - OpenSSH vulnerability CVE-2010-4755
2014-03-17 00:00:00
ubuntucve
ubuntucve
CVE-2010-4756
2011-03-02 00:00:00
debian
debian
[SECURITY] [DSA 2305-1] vsftpd security update
2011-09-19 03:49:17
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up
2023-06-07 18:09:30
jvn
jvn
JVN#37417423: Multiple vulnerabilities in SolarView Compact
2021-02-19 00:00:00
oracle
oracle
Oracle Critical Patch Update - January 2011
2011-01-18 00:00:00
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
0.29 Low
EPSS
Percentile
96.8%
Related for UB:CVE-2011-0762