RSS   Podatności dla 'Uftpd'   RSS

2020-01-22
 
CVE-2020-5221

CWE-22
 

 
In uftpd before 2.11, it is possible for an unauthenticated user to perform a directory traversal attack using multiple different FTP commands and read and write to arbitrary locations on the filesystem due to the lack of a well-written chroot jail in compose_abspath(). This has been fixed in version 2.11

 
2020-01-06
 
CVE-2020-5204

CWE-120
 

 
In uftpd before 2.11, there is a buffer overflow vulnerability in handle_PORT in ftpcmd.c that is caused by a buffer that is 16 bytes large being filled via sprintf() with user input based on the format specifier string %d.%d.%d.%d. The 16 byte size is correct for valid IPv4 addresses (len('255.255.255.255') == 16), but the format specifier %d allows more than 3 digits. This has been fixed in version 2.11

 

 >>> Vendor: Troglobit 2 Produkty
PIMD
Uftpd


Copyright 2020, cxsecurity.com

 

Back to Top