CVE-2003-0831

Published: Sep 25, 2003

Modified: Aug 8, 2024

PUBLISHED

Description

ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow using certain files.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20031013 Remote root exploit for proftpd \n bug

mailing-list

x_refsource_BUGTRAQ

20030923 ProFTPD ASCII File Remote Compromise Vulnerability

third-party-advisory

x_refsource_ISS

VU#405348

third-party-advisory

x_refsource_CERT-VN

proftpd-ascii-xfer-newline-bo(12200)

vdb-entry

x_refsource_XF

107

exploit

x_refsource_EXPLOIT-DB

20031014 Another ProFTPd root EXPLOIT ?

mailing-list

x_refsource_FULLDISC

9829

third-party-advisory

x_refsource_SECUNIA

20030924 [slackware-security] ProFTPD Security Advisory (SSA:2003-259-02)

mailing-list

x_refsource_BUGTRAQ

MDKSA-2003:095

vendor-advisory

x_refsource_MANDRAKE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2003-0831

Description

Affected Products

References