Back to search
CVE-2007-5962
Published: May 22, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 and Fedora 6 through 8, and on Foresight Linux and rPath appliances, allows remote attackers to cause a denial of service (memory consumption) via a large number of CWD commands, as demonstrated by an attack on a daemon with the deny_file configuration option.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0185
x_refsource_CONFIRM
FEDORA-2008-4347
vendor-advisory
x_refsource_FEDORA
30341
third-party-advisory
x_refsource_SECUNIA
5814
exploit
x_refsource_EXPLOIT-DB
30354
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0295
vendor-advisory
x_refsource_REDHAT
FEDORA-2008-4362
vendor-advisory
x_refsource_FEDORA
[oss-security] 20080521 Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific)
mailing-list
x_refsource_MLIST
https://bugzilla.redhat.com/show_bug.cgi?id=397011
x_refsource_CONFIRM
vsftpd-denyfile-dos(42593)
vdb-entry
x_refsource_XF
FEDORA-2008-4373
vendor-advisory
x_refsource_FEDORA
ADV-2008-1600
vdb-entry
x_refsource_VUPEN
[oss-security] 20080521 Re: vsftpd CVE-2007-5962 (Red Hat / Fedora specific)
mailing-list
x_refsource_MLIST
29322
vdb-entry
x_refsource_BID
oval:org.mitre.oval:def:8850
vdb-entry
signature
x_refsource_OVAL
[oss-security] 20080521 vsftpd CVE-2007-5962 (Red Hat / Fedora specific)
mailing-list
x_refsource_MLIST
20080606 rPSA-2008-0185-1 vsftpd
mailing-list
x_refsource_BUGTRAQ
1020079
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now