Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Gentoo: GLSA-202103-09 High: ProFTPD Local Escalation Threat

gentoo
Calendar Grey February 13, 2007
Dist Gentoo Esm H88
An urgent Gentoo advisory has been issued concerning a vulnerability in ProFTPD that enables local privilege escalation. Immediate action is advised.
A flaw in ProFTPD may allow a local attacker to obtain root privileges.

Summary

Gentoo Linux Security Advisory GLSA 200702-02 https://security.gentoo.org/ Severity: High Title: ProFTPD: Local privilege escalation Date: February 13, 2007 Bugs: #158122 ID: 200702-02

Synopsis ======= A flaw in ProFTPD may allow a local attacker to obtain root privileges.
Background ========= ProFTPD is a powerful, configurable, and free FTP daemon.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-ftp/proftpd < 1.3.1_rc1 >= 1.3.1_rc1
========== A flaw exists in the mod_ctrls module of ProFTPD, normally used to allow FTP server administrators to configure the daemon at runtime.
Impact ===== An FTP server administrator permitted to interact with mod_ctrls co...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround