ID CVE-2004-0432
Summary ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions.
References
Vulnerable Configurations
  • cpe:2.3:a:proftpd_project:proftpd:1.2.9
    cpe:2.3:a:proftpd_project:proftpd:1.2.9
  • cpe:2.3:o:gentoo:linux:0.5
    cpe:2.3:o:gentoo:linux:0.5
  • cpe:2.3:o:gentoo:linux:0.7
    cpe:2.3:o:gentoo:linux:0.7
  • cpe:2.3:o:gentoo:linux:1.1a
    cpe:2.3:o:gentoo:linux:1.1a
  • Gentoo Linux 1.2
    cpe:2.3:o:gentoo:linux:1.2
  • Gentoo Linux 1.4
    cpe:2.3:o:gentoo:linux:1.4
  • Gentoo Linux 1.4 rc1
    cpe:2.3:o:gentoo:linux:1.4:rc1
  • Gentoo Linux 1.4 rc2
    cpe:2.3:o:gentoo:linux:1.4:rc2
  • Gentoo Linux 1.4 rc3
    cpe:2.3:o:gentoo:linux:1.4:rc3
  • Trustix Secure Linux 2.0
    cpe:2.3:o:trustix:secure_linux:2.0
  • Trustix Secure Linux 2.1
    cpe:2.3:o:trustix:secure_linux:2.1
CVSS
Base: 7.5 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
nessus via4
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PROFTPD_1210_R1.NASL
    description The following package needs to be updated: proftpd
    last seen 2016-09-26
    modified 2004-07-06
    plugin id 12604
    published 2004-07-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=12604
    title FreeBSD : proftpd IP address access control list breakage (155)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-200405-09.NASL
    description The remote host is affected by the vulnerability described in GLSA-200405-09 (ProFTPD Access Control List bypass vulnerability) ProFTPD 1.2.9 introduced a vulnerability that allows CIDR-based ACLs (such as 10.0.0.1/24) to be bypassed. The CIDR ACLs are disregarded, with the net effect being similar to an 'AllowAll' directive. Impact : This vulnerability may allow unauthorized files, including critical system files to be downloaded and/or modified, thereby allowing a potential remote compromise of the server. Workaround : Users may work around the problem by avoiding use of CIDR-based ACLs.
    last seen 2019-02-21
    modified 2015-04-13
    plugin id 14495
    published 2004-08-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=14495
    title GLSA-200405-09 : ProFTPD Access Control List bypass vulnerability
  • NASL family Mandriva Local Security Checks
    NASL id MANDRAKE_MDKSA-2004-041.NASL
    description A portability workaround that was applied in version 1.2.9 of the ProFTPD FTP server caused CIDR based ACL entries in 'Allow' and 'Deny' directives to act like an 'AllowAll' directive. This granted FTP clients access to files and directories that the server configuration may have been explicitly denying. This problem only exists in version 1.2.9 and has been fixed upstream. A patch has been applied to correct the problem.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 14140
    published 2004-07-31
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=14140
    title Mandrake Linux Security Advisory : proftpd (MDKSA-2004:041)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_CB6C6C299C4F11D893660020ED76EF5A.NASL
    description Jindrich Makovicka reports a regression in proftpd's handling of IP address access control lists (IP ACLs). Due to this regression, some IP ACLs are treated as ``allow all''.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 36637
    published 2009-04-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=36637
    title FreeBSD : proftpd IP address access control list breakage (cb6c6c29-9c4f-11d8-9366-0020ed76ef5a)
refmap via4
bid 10252
bugtraq 20040430 [OpenPKG-SA-2004.018] OpenPKG Security Advisory (proftpd)
confirm http://bugs.proftpd.org/show_bug.cgi?id=2267
mandrake MDKSA-2004:041
secunia 11527
trustix 2004-0025
xf proftpd-cidr-acl-bypass(16038)
Last major update 17-10-2016 - 22:45
Published 18-08-2004 - 00:00
Last modified 10-07-2017 - 21:30
Back to Top