Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

Gentoo: GLSA-200405-09 High: ProFTPD Access Control Issue

gentoo
Calendar Grey May 19, 2004
Dist Gentoo Esm H88
A vulnerability in ProFTPD's ACL on Gentoo enables unauthorized file access. It is advised to update for enhanced security.
Version 1.2.9 of ProFTPD introduced a vulnerability that causes CIDR-based Access Control Lists (ACLs) to be treated as "AllowAll", thereby allowing remote users full access to fil...

Summary

Gentoo Linux Security Advisory GLSA 200405-09 https://security.gentoo.org/ Severity: High Title: ProFTPD Access Control List bypass vulnerability Date: May 19, 2004 Bugs: #49496 ID: 200405-09

Synopsis ======= Version 1.2.9 of ProFTPD introduced a vulnerability that causes CIDR-based Access Control Lists (ACLs) to be treated as "AllowAll", thereby allowing remote users full access to files available to the FTP daemon.
Background ========= ProFTPD is an FTP daemon.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-ftp/proftpd == 1.2.9-r1 >= 1.2.9-r2 1 net-ftp/proftpd == 1.2.9 >= 1.2.9-r2
========== ProFTPD 1.2.9 introduced a vu...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory Gentoo high severity software update access control ProFTPD FTP risk

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory Gentoo high severity software update access control ProFTPD FTP risk

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here