Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2001-0136

Published: 12/03/2001 Updated: 26/01/2024
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 515
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Proftpd

Vulnerability Summary

Memory leak in ProFTPd 1.2.0rc2 allows remote malicious users to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.

Vulnerable Product Search on Vulmon Subscribe to Product

proftpd proftpd 1.2.0

mandrakesoft mandrake linux 7.2

debian debian linux 2.2

conectiva linux

Vendor Advisories

Debian Security Advisories: DSA-029-2 proftpd -- remote DOS & potential buffer overflow
The following problems have been reported for the version of proftpd in Debian 22 (potato): There is a memory leak in the SIZE command which can result in a denial of service, as reported by Wojciech Purczynski This is only a problem if proftpd cannot write to its scoreboard file; the default configuration of proftpd in Debian is not vulnerable ...

Exploits

Exploit DB: ProFTPd 1.2.0 rc2 - Memory Leakage
/* | Proftpd DoS | by Piotr Zurawski (szur@ixrenetpl) | This source is just an example of memory leakage in proftpd-120(rc2) | server discovered by Wojciech Purczynski | */ #include <stdioh> #include <unistdh> #include <stdlibh> #include <signalh> #include <timeh> #include <stringh> #include &lt ...
Exploit DB: ProFTPd 1.2.0 pre10 - Remote Denial of Service
/* ProFTPd DoS version 11 Remote DoS in proFTPd Code by: JeT-Li -The Wushu Master- jet_li_man@yahoocom Recently I posted a remote DoS for ProFTPd based in the multiple use of the SIZE command in order to crash the system Now and thanks to the information provided by Wojciech Purczynski I have coded ...
Exploit DB: ProFTPd 1.2 - 'SIZE' Remote Denial of Service
source: wwwsecurityfocuscom/bid/2185/info A memory leak has been reported in all versions of ProFTPd The SIZE FTP command causes the server to misallocate and leak small amounts of memory each time the command is executed If a sufficient number of these commands are executed by the server, substantial amounts of system memory can be c ...

References

CWE-401http://www.securityfocus.com/archive/1/152206http://archives.neohapsis.com/archives/bugtraq/2001-01/0122.htmlhttp://archives.neohapsis.com/archives/bugtraq/2001-01/0132.htmlhttp://www.linux-mandrake.com/en/security/2001/MDKSA-2001-021.php3http://www.debian.org/security/2001/dsa-029http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000380http://archives.neohapsis.com/archives/bugtraq/2001-02/0267.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/5801https://nvd.nist.govhttps://www.debian.org/security/./dsa-029https://www.exploit-db.com/exploits/241/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook