Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
proftpd project proftpd 1.2 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5815
Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and previous versions allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a "ProFTPD remote exploit."
Proftpd Project Proftpd
2 EDB exploits
NA
CVE-2005-4816
Buffer overflow in mod_radius in ProFTPD prior to 1.3.0rc2 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long password.
Proftpd Project Proftpd 1.2.0 Rc1
Proftpd Project Proftpd 1.2.0 Rc3
Proftpd Project Proftpd 1.2.4
Proftpd Project Proftpd 1.2.5 Rc1
Proftpd Project Proftpd 1.2.7 Rc3
Proftpd Project Proftpd 1.2.8 Rc1
Proftpd Project Proftpd 1.2.9
Proftpd Project Proftpd 1.2 Pre10
Proftpd Project Proftpd 1.2 Pre2
Proftpd Project Proftpd 1.2 Pre9
Proftpd Project Proftpd 1.2
Proftpd Project Proftpd 1.2.6
Proftpd Project Proftpd 1.2.7
Proftpd Project Proftpd 1.2.7 Rc1
Proftpd Project Proftpd 1.2.7 Rc2
Proftpd Project Proftpd 1.2 Pre4
Proftpd Project Proftpd 1.2 Pre5
Proftpd Project Proftpd 1.2 Pre6
Proftpd Project Proftpd 1.2 Pre7
Proftpd Project Proftpd 1.2.10
Proftpd Project Proftpd 1.2.2
Proftpd Project Proftpd 1.2.2 Rc1
NA
CVE-2004-0432
ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions.
Proftpd Project Proftpd 1.2.9
Gentoo Linux 1.1a
Gentoo Linux 1.2
Gentoo Linux 1.4
Trustix Secure Linux 2.0
Gentoo Linux 0.5
Gentoo Linux 0.7
Trustix Secure Linux 2.1
NA
CVE-2001-1501
The glob functionality in ProFTPD 1.2.1, and possibly other versions allows remote malicious users to cause a denial of service (CPU and memory consumption) via commands with large numbers of wildcard and other special characters, as demonstrated using an ls command with multiple...
Proftpd Project Proftpd 1.2.1
1 EDB exploit
NA
CVE-2001-1500
ProFTPD 1.2.2rc2, and possibly other versions, does not properly verify reverse-resolved hostnames by performing forward resolution, which allows remote malicious users to bypass ACLs or cause an incorrect client hostname to be logged.
Proftpd Project Proftpd 1.2 Pre10
Proftpd Project Proftpd 1.2 Pre11
Proftpd Project Proftpd 1.2 Pre8
Proftpd Project Proftpd 1.2 Pre9
Proftpd Project Proftpd 1.2.2 Rc1
Proftpd Project Proftpd 1.2.2 Rc2
Proftpd Project Proftpd 1.2 Pre1
Proftpd Project Proftpd 1.2 Pre6
Proftpd Project Proftpd 1.2 Pre7
Proftpd Project Proftpd 1.2
Proftpd Project Proftpd 1.2.0 Rc3
Proftpd Project Proftpd 1.2 Pre2
Proftpd Project Proftpd 1.2 Pre3
Proftpd Project Proftpd 1.2.1
Proftpd Project Proftpd 1.2.2
Proftpd Project Proftpd 1.2 Pre4
Proftpd Project Proftpd 1.2 Pre5
NA
CVE-1999-1475
ProFTPd 1.2 compiled with the mod_sqlpw module records user passwords in the wtmp log file, which allows local users to obtain the passwords and gain privileges by reading wtmp, e.g. via the last command.
Proftpd Project Proftpd 1.2
NA
CVE-1999-0911
Buffer overflow in ProFTPD, wu-ftpd, and beroftpd allows remote malicious users to gain root access via a series of MKD and CWD commands that create nested directories.
Proftpd Project Proftpd 1.2 Pre3
Proftpd Project Proftpd 1.2 Pre4
Proftpd Project Proftpd 1.2 Pre5
Proftpd Project Proftpd 1.2 Pre1
Proftpd Project Proftpd 1.2 Pre2
2 EDB exploits
NA
CVE-1999-0368
Buffer overflows in wuarchive ftpd (wu-ftpd) and ProFTPD lead to remote root access, a.k.a. palmetto.
Washington University Wu-ftpd 2.4.2 Beta18 Vr9
Proftpd Project Proftpd 1.2 Pre1
Washington University Wu-ftpd 2.4.2 Beta18
Sco Openserver 5.0
Slackware Slackware Linux 3.5
Redhat Linux 5.1
Slackware Slackware Linux 3.4
Redhat Linux 5.0
Sco Openserver 5.0.2
Sco Openserver 5.0.5
Slackware Slackware Linux 3.6
Sco Unixware 7.0
Debian Debian Linux 2.0
Sco Openserver 5.0.3
Sco Unixware 7.0.1
Sco Openserver 5.0.4
Caldera Openlinux 1.3
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started