Описание
ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow using certain files.
ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow using certain files.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2003-0831
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12200
- https://www.exploit-db.com/exploits/107
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/012072.html
- http://marc.info/?l=bugtraq&m=106441655617816&w=2
- http://marc.info/?l=bugtraq&m=106606885611269&w=2
- http://secunia.com/advisories/9829
- http://www.kb.cert.org/vuls/id/405348
- http://www.mandriva.com/security/advisories?name=MDKSA-2003:095
- http://xforce.iss.net/xforce/alerts/id/154
Связанные уязвимости
nvd
почти 22 года назад
ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow using certain files.
debian
почти 22 года назад
ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline cha ...