Search CVE reports
31 – 36 of 36 results
The Auth API in ProFTPD before 20070417, when multiple simultaneous authentication modules are configured, does not require that the module that checks authentication is the same as the module that retrieves authentication data,...
2 affected packages
proftpd, proftpd-dfsg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| proftpd | — | — | — | — | — |
| proftpd-dfsg | — | — | — | — | — |
Some fixes available 6 of 8
Stack-based buffer overflow in the pr_ctrls_recv_request function in ctrls.c in the mod_ctrls module in ProFTPD before 1.3.1rc1 allows local users to execute arbitrary code via a large reqarglen length value.
2 affected packages
proftpd, proftpd-dfsg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| proftpd | — | — | — | — | — |
| proftpd-dfsg | — | — | — | — | — |
Some fixes available 6 of 8
Buffer overflow in the tls_x509_name_oneline function in the mod_tls module, as used in ProFTPD 1.3.0a and earlier, and possibly other products, allows remote attackers to execute arbitrary code via a large data length argument, a...
2 affected packages
proftpd, proftpd-dfsg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| proftpd | — | — | — | — | — |
| proftpd-dfsg | — | — | — | — | — |
Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm,...
2 affected packages
proftpd, proftpd-dfsg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| proftpd | — | — | — | — | — |
| proftpd-dfsg | — | — | — | — | — |
Some fixes available 2 of 4
Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password.
2 affected packages
proftpd, proftpd-dfsg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| proftpd | — | — | — | — | — |
| proftpd-dfsg | — | — | — | — | — |
Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via (1) certain inputs to the shutdown message from ftpshut, or (2) the SQLShowInfo...
2 affected packages
proftpd, proftpd-dfsg
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| proftpd | — | — | — | — | — |
| proftpd-dfsg | — | — | — | — | — |