FTP servers such as OpenBSD ftpd, NetBSD ftpd, ProFTPd and Opieftpd do not properly cleanse untrusted format strings that are used in the setproctitle function (sometimes called by set_proc_title), which allows remote malicious users to cause a denial of service or execute arbitrary commands.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
washington university wu-ftpd 2.4.2 beta18 |
||
washington university wu-ftpd 2.4.2 beta18 vr14 |
||
washington university wu-ftpd 2.4.2 vr17 |
||
washington university wu-ftpd 2.4.2 beta18 vr9 |
||
washington university wu-ftpd 2.5 |
||
washington university wu-ftpd 2.4.2 vr16 |
||
washington university wu-ftpd 2.4.2 beta18 vr11 |
||
washington university wu-ftpd 2.4.2 beta18 vr6 |
||
washington university wu-ftpd 2.4.2 beta1 |
||
openbsd ftpd 5.51 |
||
washington university wu-ftpd 2.4.2 beta18 vr4 |
||
washington university wu-ftpd 2.6 |
||
washington university wu-ftpd 2.4.2 beta18 vr12 |
||
washington university wu-ftpd 2.4.2 beta18 vr5 |
||
washington university wu-ftpd 2.4.2 beta18 vr13 |
||
washington university wu-ftpd 2.4.2 beta18 vr10 |
||
washington university wu-ftpd 2.4.2 beta18 vr15 |
||
washington university wu-ftpd 2.4.2 beta18 vr7 |
||
openbsd ftpd 5.60 |
||
washington university wu-ftpd 2.4.2 beta18 vr8 |