Back to search
CVE-2011-0762
Published: Mar 2, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU consumption and process slot exhaustion) via crafted glob expressions in STAT commands in multiple FTP sessions, a different vulnerability than CVE-2010-2632.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
FEDORA-2011-2590
vendor-advisory
x_refsource_FEDORA
HPSBMU02752
vendor-advisory
x_refsource_HP
SSRT100802
vendor-advisory
x_refsource_HP
SUSE-SR:2011:009
vendor-advisory
x_refsource_SUSE
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=622741
x_refsource_CONFIRM
FEDORA-2011-2615
vendor-advisory
x_refsource_FEDORA
ADV-2011-0639
vdb-entry
x_refsource_VUPEN
ADV-2011-0668
vdb-entry
x_refsource_VUPEN
DSA-2305
vendor-advisory
x_refsource_DEBIAN
20110301 vsftpd 2.3.2 remote denial-of-service
mailing-list
x_refsource_BUGTRAQ
8109
third-party-advisory
x_refsource_SREASON
ADV-2011-0547
vdb-entry
x_refsource_VUPEN
16270
exploit
x_refsource_EXPLOIT-DB
vsftpd-vsffilenamepassesfilter-dos(65873)
vdb-entry
x_refsource_XF
http://cxib.net/stuff/vspoc232.c
x_refsource_MISC
MDVSA-2011:049
vendor-advisory
x_refsource_MANDRIVA
ADV-2011-0713
vdb-entry
x_refsource_VUPEN
FEDORA-2011-2567
vendor-advisory
x_refsource_FEDORA
USN-1098-1
vendor-advisory
x_refsource_UBUNTU
VU#590604
third-party-advisory
x_refsource_CERT-VN
1025186
vdb-entry
x_refsource_SECTRACK
46617
vdb-entry
x_refsource_BID
20110301 vsftpd 2.3.2 remote denial-of-service
third-party-advisory
x_refsource_SREASONRES
RHSA-2011:0337
vendor-advisory
x_refsource_REDHAT
JVN#37417423
third-party-advisory
x_refsource_JVN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now