CVE-2020-9273 — Use After Free in Proftpd

CWE-416 — Use After Free6 documents6 sources

Severity

8.8HIGHNVD

EPSS

68.9%

top 1.36%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Simatic NET CP 1543-1 Firmware Debian Linux Fedoraproject Fedora +3 more

Timeline

PublishedFeb 20

Latest updateMay 24

Description

In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in alloc_pool in pool.c, and possible remote code execution.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages4 packages

▶NVDproftpd/proftpd1.3.7

▶NVDsiemens/simatic_net_cp_1543-1_firmware< 3.0

▶NVDopensuse/leap15.1

▶NVDopensuse/backports_sle15.0

Also affects: Debian Linux 10.0, 8.0, 9.0, Fedora 30, 31

🔴Vulnerability Details

GHSA

GHSA-j879-hg9w-v5qv: In ProFTPD 1↗2022-05-24

▶

OSV

CVE-2020-9273: In ProFTPD 1↗2020-02-20

▶

CVEList

CVE-2020-9273: In ProFTPD 1↗2020-02-20

▶

📋Vendor Advisories

Debian

CVE-2020-9273: proftpd-dfsg - In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the ...↗2020

▶

💬Community

Bugzilla

CVE-2020-9273 proftpd: use-after-free in alloc_pool in pool.c↗2020-03-02

▶