This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
FTP:PROFTP:MOD-SQL-HEAP-OF
|
Severity |
Major
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
FTP
|
Keywords |
ProFTP mod_sql Remote Heap Overflow
|
Release Date |
2010/12/30
|
Update Number |
1842
|
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
FTP: ProFTP mod_sql Remote Heap Overflow
This signature detects attempts to exploit a known vulnerability in the ProFTP server. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
ProFTPD is prone to a remote heap-based buffer-overflow vulnerability.
Attackers can exploit this vulnerability to execute arbitrary code with SYSTEM-level privileges. Failed exploit attempts will result in a denial-of-service condition.
Affected Products
- Debian linux 5.0
- Debian linux 5.0 Alpha
- Debian linux 5.0 Amd64
- Debian linux 5.0 Arm
- Debian linux 5.0 Armel
- Debian linux 5.0 Hppa
- Debian linux 5.0 Ia-32
- Debian linux 5.0 Ia-64
- Debian linux 5.0 M68k
- Debian linux 5.0 Mips
- Debian linux 5.0 Mipsel
- Debian linux 5.0 Powerpc
- Debian linux 5.0 S/390
- Debian linux 5.0 Sparc
- Mandriva enterprise_server 5
- Mandriva enterprise_server 5 X86 64
- Mandriva linux_mandrake 2009.0
- Mandriva linux_mandrake 2009.0 X86 64
- Mandriva linux_mandrake 2010.0
- Mandriva linux_mandrake 2010.0 X86 64
- Mandriva linux_mandrake 2010.1
- Mandriva linux_mandrake 2010.1 X86 64
- Proftpd proftpd 1.3.0
- Proftpd proftpd 1.3.0 A
- Proftpd proftpd 1.3.0 RC1
- Proftpd proftpd 1.3.0 RC2
- Proftpd proftpd 1.3.0 Rc3
- Proftpd proftpd 1.3.0 Rc4
- Proftpd proftpd 1.3.0 Rc5
- Proftpd proftpd 1.3.1
- Proftpd proftpd 1.3.1 RC1
- Proftpd proftpd 1.3.1 Rc2
- Proftpd proftpd 1.3.1 Rc3
- Proftpd proftpd 1.3.2
- Proftpd proftpd 1.3.2 A
- Proftpd proftpd 1.3.2 B
- Proftpd proftpd 1.3.2 C
- Proftpd proftpd 1.3.2 D
- Proftpd proftpd 1.3.2 E
- Proftpd proftpd 1.3.2 RC1
- Proftpd proftpd 1.3.2 Rc2
- Proftpd proftpd 1.3.2 Rc3
- Proftpd proftpd 1.3.2 Rc4
- Proftpd proftpd 1.3.3
- Proftpd proftpd 1.3.3 A
- Proftpd proftpd 1.3.3 B
- Proftpd proftpd 1.3.3 C
- Proftpd proftpd 1.3.3 Rc1
- Proftpd proftpd 1.3.3 Rc2
- Proftpd proftpd 1.3.3 Rc3
- Proftpd proftpd 1.3.3 Rc4
- Proftpd_project proftpd 1.3.1
- Proftpd_project proftpd 1.3.2
- Proftpd_project proftpd 1.3.2A
- Proftpd_project proftpd 1.3.2B
- Proftpd_project proftpd 1.3.2C
- Proftpd_project proftpd 1.3.2 Rc2
- Proftpd_project proftpd 1.3.2 Rc3
- Proftpd_project proftpd 1.3.3
- Proftpd_project proftpd 1.3.3c
- Proftpd_project proftpd 1.3.3 Rc2
- Red_hat fedora 13
- Red_hat fedora 14
- Slackware linux 11.0
- Slackware linux 12.0
- Slackware linux 12.1
- Slackware linux 12.2
- Slackware linux 13.0
- Slackware linux 13.0 X86 64
- Slackware linux 13.1
- Slackware linux 13.1 X86 64
References