CVE-2005-4816
published 2005-12-31CVE-2005-4816: Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a…
PriorityP434high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
12.58%
95.7th percentile
Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password.
Affected
38 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | proftpd-dfsg | < proftpd-dfsg 1.2.10+1.3.0rc5-1 (bookworm) | proftpd-dfsg 1.2.10+1.3.0rc5-1 (bookworm) |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
| proftpd_project | proftpd | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-2q4g-fw9r-2xxm: Buffer overflow in mod_radius in ProFTPD before 1
ghsa_unreviewed·2022-05-01
CVE-2005-4816 [HIGH] GHSA-2q4g-fw9r-2xxm: Buffer overflow in mod_radius in ProFTPD before 1
Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password.
OSV
CVE-2005-4816: Buffer overflow in mod_radius in ProFTPD before 1
osv·2005-12-31·CVSS 7.5
CVE-2005-4816 [HIGH] CVE-2005-4816: Buffer overflow in mod_radius in ProFTPD before 1
Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password.
Debian
CVE-2005-4816: proftpd-dfsg - Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers...
vendor_debian·2005·CVSS 7.5
CVE-2005-4816 [HIGH] CVE-2005-4816: proftpd-dfsg - Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers...
Buffer overflow in mod_radius in ProFTPD before 1.3.0rc2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long password.
Scope: local
bookworm: resolved (fixed in 1.2.10+1.3.0rc5-1)
bullseye: resolved (fixed in 1.2.10+1.3.0rc5-1)
forky: resolved (fixed in 1.2.10+1.3.0rc5-1)
sid: resolved (fixed in 1.2.10+1.3.0rc5-1)
trixie: resolved (fixed in 1.2.10+1.3.0rc5-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/dailydave/2006-q1/0122.htmlhttp://bugs.proftpd.org/show_bug.cgi?id=2658http://www.debian.org/security/2007/dsa-1245http://www.osvdb.org/23063http://www.securityfocus.com/bid/16535http://archives.neohapsis.com/archives/dailydave/2006-q1/0122.htmlhttp://bugs.proftpd.org/show_bug.cgi?id=2658http://www.debian.org/security/2007/dsa-1245http://www.osvdb.org/23063http://www.securityfocus.com/bid/16535
2005-12-31
Published