Format string vulnerabilities in ProFTPD before 1.3.0rc2: Denial of Service and Information Disclosure

Format string vulnerabilities in ProFTPD before 1.3.0rc2: Denial of Service and Information Disclosure

CVE-2005-2390 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:P

Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via (1) certain inputs to the shutdown message from ftpshut, or (2) the SQLShowInfo mod_sql directive.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.