Proftpd Project: >> Proftpd >> 1.2.9 Security Vulnerabilities
Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password.
CVSS Score
7.5
EPSS Score
0.026
Published
2005-12-31
Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via (1) certain inputs to the shutdown message from ftpshut, or (2) the SQLShowInfo mod_sql directive.
CVSS Score
6.4
EPSS Score
0.012
Published
2005-07-27
ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions.
CVSS Score
7.5
EPSS Score
0.012
Published
2004-08-18