mod_radius in ProFTPD before 1.3.7c allows memory disclosure to RADIUS servers because it copies blocks of 16 characters.
References
Link | Resource |
---|---|
http://www.proftpd.org/docs/RELEASE_NOTES-1.3.7e | Release Notes Vendor Advisory |
https://bugs.gentoo.org/811495 | Issue Tracking Third Party Advisory |
https://github.com/proftpd/proftpd/issues/1284 | Exploit Issue Tracking Third Party Advisory |
https://github.com/proftpd/proftpd/pull/1285 | Third Party Advisory |
https://security.gentoo.org/glsa/202305-03 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-11-23T00:00:00
Updated: 2023-05-03T00:00:00
Reserved: 2022-11-23T00:00:00
Link: CVE-2021-46854
JSON object: View
NVD Information
Status : Modified
Published: 2022-11-23T07:15:09.057
Modified: 2023-05-03T11:15:10.940
Link: CVE-2021-46854
JSON object: View
Redhat Information
No data.
CWE