CVE-2021-46854

Description

mod_radius in ProFTPD before 1.3.7c allows memory disclosure to RADIUS servers because it copies blocks of 16 characters.

Related CPE's

a proftpd proftpd ********

References

https://github.com/proftpd/proftpd/issues/1284

ExploitIssue TrackingThird Party Advisory

https://github.com/proftpd/proftpd/pull/1285

Third Party Advisory

https://bugs.gentoo.org/811495

Issue TrackingThird Party Advisory

http://www.proftpd.org/docs/RELEASE_NOTES-1.3.7e

Release NotesVendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io