vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service (crash) via a SIGCHLD signal during a malloc or free call, which is not re-entrant.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:52
Type | Values Removed | Values Added |
---|---|---|
References | () ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-1.2.2/Changelog - | |
References | () http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=119136 - | |
References | () http://rhn.redhat.com/errata/RHBA-2004-164.html - Patch | |
References | () http://secunia.com/advisories/11680 - Patch, Vendor Advisory | |
References | () http://secunia.com/advisories/11736 - Patch, Vendor Advisory | |
References | () http://www.osvdb.org/6306 - Patch | |
References | () http://www.securityfocus.com/bid/10394 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/16222 - | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11049 - |
Information
Published : 2004-12-31 05:00
Updated : 2024-11-20 23:52
NVD link : CVE-2004-2259
Mitre link : CVE-2004-2259
CVE.ORG link : CVE-2004-2259
JSON object : View
Products Affected
beasts
- vsftpd
CWE