icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

ProFTPD cwd Command Format String

High

Synopsis

The remote host is vulnerable to a remote 'format string' flaw.

Description

The remote ProFTPd server is as old or older than 1.2.0rc2. There is a format string vulnerability in this version that might allow an attacker to execute arbitrary code on this host.

Solution

Upgrade to the latest version of ProFTPd.