Out-of-bounds read in ProFTPD

#VU84847 Out-of-bounds read in ProFTPD

Published: 2023-12-28

Vulnerability identifier: #VU84847

Vulnerability risk: Medium

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-51713

CWE-ID: CWE-125

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
ProFTPD
Server applications / File servers (FTP/HTTP)

Vendor: ProFTPD

Description

The vulnerability allows a remote user to perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition within the make_ftp_cmd() function in main.c. A remote user can pass a specially crafted command to the server, trigger an out-of-bounds read error and perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

ProFTPD: 1.2.0 - 1.3.8 rc4

External links
http://github.com/proftpd/proftpd/issues/1683
http://github.com/proftpd/proftpd/issues/1683#issuecomment-1712887554
http://github.com/proftpd/proftpd/blob/1.3.8/NEWS

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

openEuler update for proftpd

Fedora EPEL 8 update for proftpd

Denial of service in ProFTPD