LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

proftpd: code execution

Package(s):proftpd CVE #(s):CVE-2010-4221
Created:November 11, 2010 Updated:December 24, 2010
Description:

From the proftpd bugzilla entry:

The flaw exists within the proftpd server component which listens by default on TCP port 21. When reading user input if a TELNET_IAC escape sequence is encountered the process miscalculates a buffer length counter value allowing a user controlled copy of data to a stack buffer. A remote attacker can exploit this vulnerability to execute arbitrary code under the context of the proftpd process.

Alerts:
Slackware SSA:2010-357-02 2010-12-24
Fedora FEDORA-2010-17220 2010-11-03
Mandriva MDVSA-2010:227 2010-11-11
Fedora FEDORA-2010-17091 2010-11-02
Fedora FEDORA-2010-17098 2010-11-02
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds