24471 2010-11-01 16:08:54 +0300 ProFTPD Directory Traversal and Buffer Overflow Vulnerabilities 2010-11-04 12:38:45 +0300 1 1 4 Development Sisyphus proftpd unstable all Linux CLOSED FIXED http://secunia.com/advisories/42052/ security P3 blocker --- 1 crux ender ender lakostis qa-sisyphus oldest_to_newest 114680 0 crux 2010-11-01 16:08:54 +0300 Two vulnerabilities have been reported in ProFTPD, which can be exploited by malicious users to manipulate certain data and malicious people to compromise a vulnerable system. 1) A logic error within the "pr_netio_telnet_gets()" function in src/netio.c when processing user input containing the Telnet IAC (Interpret As Command) escape sequence can be exploited to cause a stack-based buffer overflow by sending specially crafted input to the FTP or FTPS service. Successful exploitation may allow execution of arbitrary code. 2) An input validation error within the "mod_site_misc" module can be exploited to e.g. create and delete directories, create symlinks, and change the time of files located outside a writable directory. Successful exploitation requires that ProFTPD is compiled with the "mod_site_misc" module and the attacker has write access to a directory. Fixed in 1.3.3c 114681 1 ender 2010-11-01 16:14:20 +0300 до завтра отправлю P.S. блин, я ж смотрел! 114822 2 repository-robot 2010-11-04 12:38:45 +0300 proftpd-1.3.3rel-alt2 -> sisyphus: * Thu Nov 04 2010 Afanasov Dmitry <ender@altlinux> 1.3.3rel-alt2 - 1.3.3c stable release (closes: #24471)