CVE Reference: CVE-2011-4130

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2011-4130

Description:
Use-after-free vulnerability in the Response API in ProFTPD before 1.3.3g allows remote authenticated users to execute arbitrary code via vectors involving an error that occurs after an FTP data transfer.

CVE Status:
Candidate

References:

MISC
  http://www.zerodayinitiative.com/advisories/ZDI-11-328/

CONFIRM
  http://bugs.proftpd.org/show_bug.cgi?id=3711
  http://www.proftpd.org/docs/NEWS-1.3.3g

BID
  50631


Return to the previous page.