CVE-2011-0762
02.03.2011, 20:00
The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU consumption and process slot exhaustion) via crafted glob expressions in STAT commands in multiple FTP sessions, a different vulnerability than CVE-2010-2632.Enginsight
Vendor | Product | Version |
---|---|---|
vsftpd_project | vsftpd | 𝑥 < 2.3.3 |
canonical | ubuntu_linux | 6.06 |
canonical | ubuntu_linux | 8.04 |
canonical | ubuntu_linux | 9.10 |
canonical | ubuntu_linux | 10.04 |
canonical | ubuntu_linux | 10.10 |
debian | debian_linux | 5.0 |
debian | debian_linux | 6.0 |
debian | debian_linux | 7.0 |
opensuse | opensuse | 11.2 |
opensuse | opensuse | 11.3 |
opensuse | opensuse | 11.4 |
𝑥
= Vulnerable software versions

Debian Releases

Ubuntu Releases
References