Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
CVE-2006-5815: remote code execution in ProFTPD
Nov 27 2006 04:37PM
John Morrissey (jwm proftpd org)
On 6 November 2006, Evgeny Legerov <admin (at) gleg (dot) net [email concealed]> posted to BUGTRAQ,
announcing his commercial VulnDisco Pack for Metasploit 2.7. One of the
included exploits, vd_proftpd.pm, takes advantage of an off-by-one string
manipulation flaw in ProFTPD's sreplace() function t...
[ more ]
Copyright 2010, SecurityFocus