FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title), which allows remote malicious users to cause a denial of service or execute arbitrary commands.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openbsd ftpd 5.51 |
||
washington university wu-ftpd 2.4.2_beta18_vr7 |
||
washington university wu-ftpd 2.4.2_beta18_vr8 |
||
washington university wu-ftpd 2.4.2_beta18_vr9 |
||
washington university wu-ftpd 2.4.2_vr16 |
||
washington university wu-ftpd 2.4.2_vr17 |
||
washington university wu-ftpd 2.4.2_beta18_vr11 |
||
washington university wu-ftpd 2.4.2_beta18_vr12 |
||
washington university wu-ftpd 2.4.2_beta18_vr13 |
||
washington university wu-ftpd 2.4.2_beta18_vr14 |
||
washington university wu-ftpd 2.4.2_beta1 |
||
washington university wu-ftpd 2.4.2_beta18_vr10 |
||
washington university wu-ftpd 2.4.2_beta18_vr15 |
||
washington university wu-ftpd 2.4.2_beta18_vr5 |
||
washington university wu-ftpd 2.5 |
||
openbsd ftpd 5.60 |
||
washington university wu-ftpd 2.4.2_beta18 |
||
washington university wu-ftpd 2.4.2_beta18_vr4 |
||
washington university wu-ftpd 2.4.2_beta18_vr6 |
||
washington university wu-ftpd 2.6 |