Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
proftpd vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2010-4562
Microsoft Windows 2008, 7, Vista, 2003, 2000, and XP, when using IPv6, allows remote malicious users to determine whether a host is sniffing the network by sending an ICMPv6 Echo Request to a multicast address and determining whether an Echo Reply is sent, as demonstrated by thcp...
Microsoft Windows 2000
Microsoft Windows Server 2008 -
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows Xp
Microsoft Windows 2003 Server
4
CVSSv2
CVE-2019-19269
An issue exists in tls_verify_crl in ProFTPD up to and including 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL sk_X509_REVOKED_value() function when encountering an empty CRL installed by a system administrator. The dereference occurs ...
Proftpd Proftpd 1.3.6
Proftpd Proftpd
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Debian Debian Linux 8.0
4
CVSSv2
CVE-2008-7265
The pr_data_xfer function in ProFTPD prior to 1.3.2rc3 allows remote authenticated users to cause a denial of service (CPU consumption) via an ABOR command during a data transfer.
Proftpd Proftpd 1.3.2
Proftpd Proftpd 1.3.0
Proftpd Proftpd 1.2.10
Proftpd Proftpd 1.2.9
Proftpd Proftpd 1.2.7
Proftpd Proftpd 1.2.5
Proftpd Proftpd 1.2.1
Proftpd Proftpd 1.2.0
Proftpd Proftpd 1.3.1
Proftpd Proftpd 1.2.8
Proftpd Proftpd 1.2.2
Proftpd Proftpd
Proftpd Proftpd 1.2.6
Proftpd Proftpd 1.2.4
Proftpd Proftpd 1.2.3
2.1
CVSSv2
CVE-2017-7418
ProFTPD prior to 1.3.5e and 1.3.6 prior to 1.3.6rc5 controls whether the home directory of a user could contain a symbolic link through the AllowChrootSymlinks configuration option, but checks only the last path component when enforcing AllowChrootSymlinks. Attackers with local a...
Proftpd Proftpd 1.3.6
Proftpd Proftpd
1.2
CVSSv2
CVE-2012-6095
ProFTPD prior to 1.3.5rc1, when using the UserOwner directive, allows local users to modify the ownership of arbitrary files via a race condition and a symlink attack on the (1) MKD or (2) XMKD commands.
Proftpd Proftpd
Proftpd Proftpd 1.3.4
Proftpd Proftpd 1.3.2
Proftpd Proftpd 1.3.0
Proftpd Proftpd 1.2.2
Proftpd Proftpd 1.2.8
Proftpd Proftpd 1.2.7
Proftpd Proftpd 1.2.10
Proftpd Proftpd 1.3.3
Proftpd Proftpd 1.2.5
Proftpd Proftpd 1.2.4
Proftpd Proftpd 1.2.1
Proftpd Proftpd 1.2.0
Proftpd Proftpd 1.2.9
Proftpd Proftpd 1.2.6
Proftpd Proftpd 1.3.1
Proftpd Proftpd 1.2.3
NA
CVE-2023-51713
make_ftp_cmd in main.c in ProFTPD prior to 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics.
Proftpd Proftpd
NA
CVE-2023-48795
The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH prior to 9.6 and other products, allows remote malicious users to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may conseque...
Openbsd Openssh
Putty Putty
Filezilla-project Filezilla Client
Microsoft Powershell
Panic Transmit 5
Panic Nova
Roumenpetrov Pkixssh
Winscp Winscp
Bitvise Ssh Client
Bitvise Ssh Server
Lancom-systems Lcos
Lancom-systems Lcos Fx -
Lancom-systems Lcos Lx -
Lancom-systems Lcos Sx 5.20
Lancom-systems Lcos Sx 4.20
Lancom-systems Lanconfig -
Vandyke Securecrt
Libssh Libssh
Net-ssh Net-ssh 7.2.0
Ssh2 Project Ssh2
Proftpd Proftpd
Freebsd Freebsd
8 Github repositories
1 Article
NA
CVE-2021-46854
mod_radius in ProFTPD prior to 1.3.7c allows memory disclosure to RADIUS servers because it copies blocks of 16 characters.
Proftpd Proftpd
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6