Off-by-one buffer overflow in _xlate_ascii_write() in ProFTPD 1.2.7 through 1.2.9rc2p allows local users to gain privileges via a 1024 byte RETR command.
References
| Link | Resource |
|---|---|
| http://marc.info/?l=bugtraq&m=107824679817240&w=2 | Mailing List |
| http://www.securityfocus.com/bid/9782 | Broken Link Exploit Third Party Advisory VDB Entry Vendor Advisory |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/15387 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
History
02 Feb 2024, 02:48
| Type | Values Removed | Values Added |
|---|---|---|
| CVSS |
v2 : v3 : |
v2 : 7.2
v3 : 7.8 |
| CWE | CWE-193 | |
| CPE | cpe:2.3:a:proftpd_project:proftpd:1.2.7:*:*:*:*:*:*:* cpe:2.3:a:proftpd_project:proftpd:1.2.9_rc1:*:*:*:*:*:*:* cpe:2.3:a:proftpd_project:proftpd:1.2.8:*:*:*:*:*:*:* |
cpe:2.3:a:proftpd:proftpd:1.2.9:*:*:*:*:*:*:* cpe:2.3:a:proftpd:proftpd:*:*:*:*:*:*:*:* cpe:2.3:a:proftpd:proftpd:1.2.9:rc1:*:*:*:*:*:* cpe:2.3:a:proftpd:proftpd:1.2.9:rc2:*:*:*:*:*:* |
| References | () http://marc.info/?l=bugtraq&m=107824679817240&w=2 - Mailing List | |
| References | () http://www.securityfocus.com/bid/9782 - Broken Link, Exploit, Third Party Advisory, VDB Entry, Vendor Advisory | |
| References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/15387 - Third Party Advisory, VDB Entry | |
| First Time |
Proftpd
Proftpd proftpd |
Information
Published : 2004-11-23 05:00
Updated : 2024-02-02 02:48
NVD link : CVE-2004-0346
Mitre link : CVE-2004-0346
CVE.ORG link : CVE-2004-0346
JSON object : View
Products Affected
proftpd
- proftpd
CWE
CWE-193
Off-by-one Error