oss-sec mailing list archives
Re: CVE request: proftpd before 1.3.3d
From: Josh Bressers <bressers () redhat com>
Date: Fri, 14 Jan 2011 16:07:40 -0500 (EST)
I could have swore this flaw got an ID, but I can't find it.
Use CVE-2010-4652
Thanks.
--
JB
----- Original Message -----
See: http://www.securityfocus.com/bid/44933 http://phrack.org/issues.html?issue=67&id=7#article http://bugs.gentoo.org/show_bug.cgi?id=348998 Quote from securityfocus: "ProFTPD is prone to a remote heap-based buffer-overflow vulnerability. Attackers can exploit this vulnerability to execute arbitrary code with SYSTEM-level privileges. Failed exploit attempts will result in a denial-of-service condition." Please assign CVE (a 2010 / last year one). -- Hanno Böck mail/jabber: hanno () hboeck de GPG: BBB51E42 http://www.hboeck.de/
Current thread:
- CVE request: proftpd before 1.3.3d Hanno Böck (Jan 14)
- Re: CVE request: proftpd before 1.3.3d Josh Bressers (Jan 14)
- Re: CVE request: proftpd before 1.3.3d TJ Saunders (Jan 14)
- Re: CVE request: proftpd before 1.3.3d Josh Bressers (Jan 14)