This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-05-02 10:37:19 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
533d20e7-f71f-11df-9ae1-000bcdf0a03b | proftpd -- remote code execution vulnerability Tippingpoint reports:
Discovery 2010-11-02 Entry 2010-11-23 proftpd < 1.3.3c 44562 CVE-2010-4221 http://www.zerodayinitiative.com/advisories/ZDI-10-229/ |
022a4c77-2da4-11e1-b356-00215c6a37bb | proftpd -- arbitrary code execution vulnerability with chroot The FreeBSD security advisory FreeBSD-SA-11:07.chroot reports:
Proftpd shares the same problem of a similar nature. Discovery 2011-11-30 Entry 2011-12-23 Modified 2012-01-29 FreeBSD ge 7.3 lt 7.3_9 ge 7.4 lt 7.4_5 ge 8.1 lt 8.1_6 ge 8.2 lt 8.2_5 proftpd proftpd-mysql < 1.3.3g_1 proftpd-devel < 1.3.3.r4_3,1 SA-11:07.chroot http://seclists.org/fulldisclosure/2011/Nov/452 |
3f851b22-89fb-11db-a937-003048116330 | proftpd -- remote code execution vulnerabilities The proftpd development team reports that several remote buffer overflows had been found in the proftpd server. Discovery 2006-11-10 Entry 2006-12-21 proftpd proftpd-mysql < 1.3.0_5 CVE-2006-5815 CVE-2006-6170 |
0f51f2c9-8956-11dd-a6fe-0030843d3802 | proftpd -- Long Command Processing Vulnerability Secunia reports:
Discovery 2008-09-22 Entry 2008-09-23 Modified 2010-05-12 proftpd proftpd-mysql < 1.3.2rc2 proftpd-devel < 1.3.20080922 CVE-2008-4242 CVE-2008-4247 http://secunia.com/advisories/31930/ http://bugs.proftpd.org/show_bug.cgi?id=3115 |
cf0fb426-3f96-11d8-b096-0020ed76ef5a | ProFTPD ASCII translation bug resulting in remote root compromise A buffer overflow exists in the ProFTPD code that handles translation of newline characters during ASCII-mode file uploads. An attacker may exploit this buffer overflow by uploading a specially crafted file, resulting in code execution and ultimately a remote root compromise. Discovery 2003-09-23 Entry 2004-01-05 proftpd < 1.2.8_1 http://xforce.iss.net/xforce/alerts/id/154 CVE-2003-0831 |
c28f4705-043f-11da-bc08-0001020eed82 | proftpd -- format string vulnerabilities The ProFTPD release notes states:
These vulnerabilities could potentially lead to information disclosure, a denial-of-server situation, or execution of arbitrary code with the permissions of the user running ProFTPD. Discovery 2005-07-26 Entry 2005-08-03 proftpd proftpd-mysql < 1.3.0.rc2 CVE-2005-2390 http://www.gentoo.org/security/en/glsa/glsa-200508-02.xml http://www.proftpd.org/docs/RELEASE_NOTES-1.3.0rc2 |
cca97f5f-7435-11db-91de-0008743bf21a | proftpd -- Remote Code Execution Vulnerability FrSIRT reports:
Discovery 2006-11-10 Entry 2006-11-14 Modified 2006-11-15 proftpd proftpd-mysql le 1.3.0_2 http://www.frsirt.com/english/advisories/2006/4451 |
770d7e91-72af-11e7-998a-08606e47f965 | proftpd -- user chroot escape vulnerability NVD reports:
Discovery 2017-03-06 Entry 2017-07-27 proftpd < 1.3.5e http://bugs.proftpd.org/show_bug.cgi?id=4295 CVE-2017-7418 |
a733b5ca-06eb-11e6-817f-3085a9a4510d | proftpd -- vulnerability in mod_tls MITRE reports:
Discovery 2016-03-08 Entry 2016-04-20 proftpd < 1.3.5b eq 1.3.6.r1 CVE-2016-3125 |
ca0841ff-1254-11de-a964-0030843d3802 | proftpd -- multiple sql injection vulnerabilities Secunia reports:
Discovery 2009-02-06 Entry 2009-03-16 proftpd proftpd-mysql < 1.3.2 proftpd-devel le 1.3.20080922 CVE-2009-0542 CVE-2009-0543 http://secunia.com/advisories/33842/ http://bugs.proftpd.org/show_bug.cgi?id=3173 http://bugs.proftpd.org/show_bug.cgi?id=3124 http://milw0rm.com/exploits/8037 |
d0034536-ff24-11e4-a072-d050996490d0 | proftpd -- arbitrary code execution vulnerability with chroot ProFTPd development team reports:
Discovery 2015-04-15 Entry 2015-05-20 proftpd < 1.3.5_7 CVE-2015-3306 http://bugs.proftpd.org/show_bug.cgi?id=4169 |