CVE-2010-3867
Publication date 9 November 2010
Last updated 24 July 2024
Ubuntu priority
Multiple directory traversal vulnerabilities in the mod_site_misc module in ProFTPD before 1.3.3c allow remote authenticated users to create directories, delete directories, create symlinks, and modify file timestamps via directory traversal sequences in a (1) SITE MKDIR, (2) SITE RMDIR, (3) SITE SYMLINK, or (4) SITE UTIME command.
Status
Package | Ubuntu Release | Status |
---|---|---|
proftpd | 11.10 oneiric | Not in release |
11.04 natty | Not in release | |
10.10 maverick | Not in release | |
10.04 LTS lucid | Not in release | |
9.10 karmic | Not in release | |
8.04 LTS hardy | Not in release | |
6.06 LTS dapper | Ignored end of life | |
proftpd-dfsg | 11.10 oneiric |
Not affected
|
11.04 natty |
Not affected
|
|
10.10 maverick |
Fixed 1.3.2e-4ubuntu0.1
|
|
10.04 LTS lucid |
Fixed 1.3.2c-1ubuntu0.1
|
|
9.10 karmic | Ignored end of life | |
8.04 LTS hardy | Ignored end of life | |
6.06 LTS dapper | Not in release |
Patch details
Package | Patch details |
---|---|
proftpd | |
proftpd-dfsg |