Описание
ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:proftpd_project:proftpd:1.2.9:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:gentoo:linux:0.5:*:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:0.7:*:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:1.1a:*:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:1.2:*:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:1.4:rc1:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:1.4:rc2:*:*:*:*:*:*
cpe:2.3:o:gentoo:linux:1.4:rc3:*:*:*:*:*:*
cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*
cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01235
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
около 21 года назад
ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL ...
github
больше 3 лет назад
ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions.
EPSS
Процентиль: 78%
0.01235
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other