Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FTP >> ProFTPD < 1.3.0rc2 Multiple Vulnerabilities


Vulnerability Assessment Details

ProFTPD < 1.3.0rc2 Multiple Vulnerabilities

Vulnerability Assessment Summary
Checks for multiple vulnerabilities in ProFTPD < 1.3.0rc2

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote FTP server is affected by multiple vulnerabilities.

Description :

The remote host is using ProFTPD, a free FTP server for Unix and
Linux.

According to its banner, the version of ProFTPD installed on the
remote host suffers from multiple format string vulnerabilities, one
involving the 'ftpshut' utility and the other in mod_sql's
'SQLShowInfo' directive. Exploitation of either requires involvement
on the part of a site administrator and can lead to information
disclosure, denial of service, and even a compromise of the affected
system.

See also :

http://www.proftpd.org/docs/RELEASE_NOTES-1.3.0rc2

Solution :

Upgrade to ProFTPD version 1.3.0rc2 or later.

Network Security Threat Level:

Low / CVSS Base Score : 3
(AV:R/AC:H/Au:R/C:P/A:P/I:P/B:N)

Networks Security ID: 14380, 14381

Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2006 Tenable Network Security

Cables, Connectors


HUH721010AL4200/42C0 HGST Ultrastar He10 10TB 7200RPM SAS 12Gbps 256MB 2018 picture

HUH721010AL4200/42C0 HGST Ultrastar He10 10TB 7200RPM SAS 12Gbps 256MB 2018

$99.95



3TB 3.5 seagate ST3000nm0043 SAS 7200RPM 128MB 6GB/s HDD hard drive for servers  picture

3TB 3.5 seagate ST3000nm0043 SAS 7200RPM 128MB 6GB/s HDD hard drive for servers

$24.99



1TB HDD/SSD 2.5

1TB HDD/SSD 2.5" SATA Hard Drive Laptop with Windows 10 Pro Installed Legacy 64

$27.95



Western Digital RE WD4000FYYZ 4TB 7200 RPM 64MB Cache SATA 6Gb/s 3.5

Western Digital RE WD4000FYYZ 4TB 7200 RPM 64MB Cache SATA 6Gb/s 3.5" Hard Drive

$59.99



WL 4TB 64MB Cache 7200RPM (Enterprise Grade) SATA 6Gb/s 3.5

WL 4TB 64MB Cache 7200RPM (Enterprise Grade) SATA 6Gb/s 3.5" Internal Hard Drive

$48.88



HGST HUS724040ALA640 4TB 3.5

HGST HUS724040ALA640 4TB 3.5" 6.0Gb/s SATA Internal HDD w/No Tray | 0F19459

$29.98



SAMSUNG 980 M.2 2280 500GB PCI-Express 3.0 x4, NVMe 1.4 V-NAND MLC Internal Soli picture

SAMSUNG 980 M.2 2280 500GB PCI-Express 3.0 x4, NVMe 1.4 V-NAND MLC Internal Soli

$59.99



Seagate Exos X10 10Tb 7.2K 12Gb/s 4Kn SED SAS 3.5

Seagate Exos X10 10Tb 7.2K 12Gb/s 4Kn SED SAS 3.5" Enterprise Hard Drive - 100%

$94.95



Seagate Desktop HDD ST500DM002 500GB 16MB Cache 7200RPM SATA 3.5

Seagate Desktop HDD ST500DM002 500GB 16MB Cache 7200RPM SATA 3.5" Hard Drive

$21.95



HUH721010AL4200/42C0 HGST Ultrastar He10 10TB 7200RPM SAS 12Gbps 256MB LOT OF 5 picture

HUH721010AL4200/42C0 HGST Ultrastar He10 10TB 7200RPM SAS 12Gbps 256MB LOT OF 5

$499.95



Discussions

No Discussions have been posted on this vulnerability.