Описание
ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow using certain files.
ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow using certain files.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2003-0831
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12200
- https://www.exploit-db.com/exploits/107
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/012072.html
- http://marc.info/?l=bugtraq&m=106441655617816&w=2
- http://marc.info/?l=bugtraq&m=106606885611269&w=2
- http://secunia.com/advisories/9829
- http://www.kb.cert.org/vuls/id/405348
- http://www.mandriva.com/security/advisories?name=MDKSA-2003:095
- http://xforce.iss.net/xforce/alerts/id/154
Связанные уязвимости
nvd
больше 22 лет назад
ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow using certain files.
debian
больше 22 лет назад
ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline cha ...