CVE-2011-1137

EPSS 3.5%

proftpd-dfsg - integer overflow

發布日:2011/3/11修改日:2026/3/9

也稱為:DSA-2185-1DEBIAN-CVE-2011-1137

描述

Integer overflow in the mod_sftp (aka SFTP) module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service (memory consumption leading to OOM kill) via a malformed SSH message.

受影響套件(2)

Debian/proftpd-dfsgfrom 0, < 1.3.3d-4
Debian/proftpd-dfsgfrom 0, < 1.3.3a-6squeeze1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-1137