The mod_proxy_ftp module in the Apache HTTP Server allows remote malicious users to bypass intended access restrictions and send arbitrary commands to an FTP server via vectors related to the embedding of these commands in the Authorization HTTP header, as demonstrated by a certain module in VulnDisco Pack Professional 8.11.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache http server |
||
fedoraproject fedora 10 |
||
fedoraproject fedora 12 |
||
debian debian linux 4.0 |
||
opensuse opensuse 11.1 |
||
suse linux enterprise server 9 |
||
opensuse opensuse 11.0 |
||
opensuse opensuse 10.3 |
||
suse linux enterprise server 10 |
||
suse linux enterprise desktop 10 |
||
suse linux enterprise server 11 |
||
apple mac os x |