postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid root" configuration when the user enables anonymous access, which causes the server to run at a higher privilege than intended.
References
Link | Resource |
---|---|
http://www.debian.org/security/2001/dsa-032 | Patch Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/6208 |
Configurations
History
No history.
Information
Published : 2001-06-27 04:00
Updated : 2024-02-04 16:31
NVD link : CVE-2001-0456
Mitre link : CVE-2001-0456
CVE.ORG link : CVE-2001-0456
JSON object : View
Products Affected
debian
- debian_linux
CWE