September 27, 2003

proftpd exploit

http://xforce.iss.net/xforce/alerts/id/154

Problem Description:

A vulnerability was discovered by X-Force Research at ISS in ProFTPD's
handling of ASCII translation. An attacker, by downloading a carefully
crafted file, can remotely exploit this bug to create a root shell.

Affected Versions:

ProFTPD 1.2.7
ProFTPD 1.2.8
ProFTPD 1.2.8rc1
ProFTPD 1.2.8rc2
ProFTPD 1.2.9rc1
ProFTPD 1.2.9rc2

Posted by pank at September 27, 2003 10:13 PM
Comments
Post a comment













Remember personal info?