6.8 - MDVSA-2011:023

Executive Summary

Informations
Name	MDVSA-2011:023	First vendor Publication	2011-02-08
Vendor	Mandriva	Last vendor Modification	2011-02-08
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score	6.8	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A vulnerability has been found and corrected in proftpd:

Heap-based buffer overflow in the sql_prepare_where function (contrib/mod_sql.c) in ProFTPD before 1.3.3d, when mod_sql is enabled, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted username containing substitution tags, which are not properly handled during construction of an SQL query (CVE-2010-4652).

Packages for 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more: http://store.mandriva.com/product_info.php?cPath=149&products_id=490

The updated packages have been patched to correct this issue.

Original Source

Url : http://www.mandriva.com/security/advisories?name=MDVSA-2011:023

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

Type	Description	Count
Application	Proftpd cpe:2.3:a:proftpd:proftpd:1.3.3:e:::::: cpe:2.3:a:proftpd:proftpd:1.3.3:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.3.3:c:::::: cpe:2.3:a:proftpd:proftpd:1.3.3:rc4:::::: cpe:2.3:a:proftpd:proftpd:1.3.3:rc3:::::: cpe:2.3:a:proftpd:proftpd:1.3.3:b:::::: cpe:2.3:a:proftpd:proftpd:1.3.3:a:::::: cpe:2.3:a:proftpd:proftpd:1.3.3:::::::* cpe:2.3:a:proftpd:proftpd:1.3.3:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.3.3:d:::::: cpe:2.3:a:proftpd:proftpd:1.3.2:c:::::: cpe:2.3:a:proftpd:proftpd:1.3.2:e:::::: cpe:2.3:a:proftpd:proftpd:1.3.2:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.3.2:rc4:::::: cpe:2.3:a:proftpd:proftpd:1.3.2:::::::* cpe:2.3:a:proftpd:proftpd:1.3.2:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.3.2:a:::::: cpe:2.3:a:proftpd:proftpd:1.3.2:b:::::: cpe:2.3:a:proftpd:proftpd:1.3.2:rc3:::::: cpe:2.3:a:proftpd:proftpd:1.3.2:d:::::: cpe:2.3:a:proftpd:proftpd:1.3.1:::::::* cpe:2.3:a:proftpd:proftpd:1.3.1:rc3:::::: cpe:2.3:a:proftpd:proftpd:1.3.1:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.3.1:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.3.0:::::::* cpe:2.3:a:proftpd:proftpd:1.3.0:rc5:::::: cpe:2.3:a:proftpd:proftpd:1.3.0:rc3:::::: cpe:2.3:a:proftpd:proftpd:1.3.0:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.3.0:rc4:::::: cpe:2.3:a:proftpd:proftpd:1.3.0:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.3.0:a:::::: cpe:2.3:a:proftpd:proftpd:1.2.9:::::::* cpe:2.3:a:proftpd:proftpd:1.2.9:rc3:::::: cpe:2.3:a:proftpd:proftpd:1.2.9:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.2.9:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.2.8:::::::* cpe:2.3:a:proftpd:proftpd:1.2.8:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.2.8:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.2.7:rc3:::::: cpe:2.3:a:proftpd:proftpd:1.2.7:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.2.7:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.2.7:::::::* cpe:2.3:a:proftpd:proftpd:1.2.6:::::::* cpe:2.3:a:proftpd:proftpd:1.2.6:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.2.6:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.2.5:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.2.5:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.2.5:rc3:::::: cpe:2.3:a:proftpd:proftpd:1.2.5:::::::* cpe:2.3:a:proftpd:proftpd:1.2.4:::::::* cpe:2.3:a:proftpd:proftpd:1.2.3:::::::* cpe:2.3:a:proftpd:proftpd:1.2.2:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.2.2:rc3:::::: cpe:2.3:a:proftpd:proftpd:1.2.2:::::::* cpe:2.3:a:proftpd:proftpd:1.2.2:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.2.10:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.2.10:rc3:::::: cpe:2.3:a:proftpd:proftpd:1.2.10:::::::* cpe:2.3:a:proftpd:proftpd:1.2.10:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.2.1:::::::* cpe:2.3:a:proftpd:proftpd:1.2.0:rc3:::::: cpe:2.3:a:proftpd:proftpd:1.2.0:pre9:::::: cpe:2.3:a:proftpd:proftpd:1.2.0:pre10:::::: cpe:2.3:a:proftpd:proftpd:1.2.0:rc1:::::: cpe:2.3:a:proftpd:proftpd:1.2.0:rc2:::::: cpe:2.3:a:proftpd:proftpd:1.2.0:::::::* cpe:2.3:a:proftpd:proftpd::::::::	67

OpenVAS Exploits

Date	Description
2011-11-21	Name : Fedora Update for proftpd FEDORA-2011-15741 File : nvt/gb_fedora_2011_15741_proftpd_fc14.nasl
2011-05-12	Name : Debian Security Advisory DSA 2191-1 (proftpd-dfsg) File : nvt/deb_2191_1.nasl
2011-04-21	Name : Fedora Update for proftpd FEDORA-2011-5033 File : nvt/gb_fedora_2011_5033_proftpd_fc13.nasl
2011-04-21	Name : Fedora Update for proftpd FEDORA-2011-5040 File : nvt/gb_fedora_2011_5040_proftpd_fc14.nasl
2011-02-11	Name : Mandriva Update for proftpd MDVSA-2011:023 (proftpd) File : nvt/gb_mandriva_MDVSA_2011_023.nasl
2011-01-31	Name : Fedora Update for proftpd FEDORA-2011-0610 File : nvt/gb_fedora_2011_0610_proftpd_fc14.nasl
2011-01-31	Name : Fedora Update for proftpd FEDORA-2011-0613 File : nvt/gb_fedora_2011_0613_proftpd_fc13.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
70782	ProFTPD contrib/mod_sql.c sql_prepare_where Function Crafted Username Handlin... ProFTPD is prone to an overflow condition. The 'sql_prepare_where' function, contrib/mod_sql.c, fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With a specially crafted username containing substitution tags, a remote attacker can potentially execute arbitrary code.

Nessus® Vulnerability Scanner

Date	Description
2013-09-25	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201309-15.nasl - Type : ACT_GATHER_INFO
2011-03-15	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2191.nasl - Type : ACT_GATHER_INFO
2011-02-09	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2011-023.nasl - Type : ACT_GATHER_INFO
2011-01-31	Name : The remote Fedora host is missing a security update. File : fedora_2011-0610.nasl - Type : ACT_GATHER_INFO
2011-01-31	Name : The remote Fedora host is missing a security update. File : fedora_2011-0613.nasl - Type : ACT_GATHER_INFO
2010-12-23	Name : The remote FTP server is affected by a heap-based buffer overflow vulnerability. File : proftpd_1_3_3d.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:42:03	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
CPE ID(s)	67
osvdb(s)	1
Openvas Exploit(s)	7
Nessus® Exploit(s)	6

	Related
6.8	CVE-2010-4652
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

6.8 - MDVSA-2011:023

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU