CVE-2011-4130

EPSS 1.3%

proftpd-dfsg - several

發布日:2011/12/6修改日:2026/4/28

也稱為:DEBIAN-CVE-2011-4130

描述

Use-after-free vulnerability in the Response API in ProFTPD before 1.3.3g allows remote authenticated users to execute arbitrary code via vectors involving an error that occurs after an FTP data transfer.

受影響套件(3)

Debian/proftpd-dfsgfrom 0, < 1.3.4~rc3-2
Debian/proftpd-dfsgfrom 0, < 1.3.1-17lenny8
Debian/proftpd-dfsgfrom 0, < 1.3.1-17lenny9

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-4130