In association with heise online

« previous | next »
10 November 2011, 17:40

Critical bug in ProFTPD closed

ProFTPD logo The ProFTPD Project developers have released versions 1.3.3g and 1.3.4 of their open source FTP server. ProFTPD 1.3.4 addresses a critical use-after-free memory corruption error in the response API code.

According to Tipping Point's Zero Day Initiative (ZDI), the vulnerability could be exploited by a remote attacker to compromise a victim's system. For users running the 1.3.3x branch, ProFTPD 1.3.3g eliminates the security problem and also fixes several other bugs.

Further details about the releases, including a list of changes, can be found in the 1.3.3g and 1.3.4 release notes. Versions 1.3.3g and 1.3.4 of ProFTPD are available to download from the project's mirrors and are licensed under the GPL.

See also:

(crve)

Add your comment

« previous | next »
Print Version | Send by email | Permalink: http://h-online.com/-1377080

Also on The H:

  • Share this article
  • Twitter
  • Facebook
  • digg this
  • submit to slashdot
  • post to delicious
  • StumbleUpon
  • submit to reddit
The H Open Headlines

Price Insight Top 10 powered by Skinflint

  1. Samsung SSD 830 Series 128GB
  2. Samsung SSD 830 Series 256GB
  3. Samsung SSD 830 Series Desktop Upgrade Kit 256GB
  4. Intel Core i5-3570K
  5. Samsung Galaxy S3 i9300 16GB blau
  6. Crucial m4 SSD 128GB
  7. Gigabyte GeForce GTX 670 OC
  8. Palit GeForce GTX 670
  9. Diablo 3 (deutsch)
  10. Samsung Galaxy Nexus i9250 16GB silber

The H

The H open source

The H Security

The H Internet Toolkit