ProFTPD on Debian Linux postinst Installation Privilege Escalation

Medium Nessus Plugin ID 11450


The remote FTP server is affected by several flaws.


The following problems have been reported for the version of proftpd in Debian 2.2 (potato):

1. There is a configuration error in the postinst script, when the user enters 'yes', when asked if anonymous access should be enabled. The postinst script wrongly leaves the 'run as uid/gid root' configuration option in /etc/proftpd.conf, and adds a 'run as uid/gid nobody' option that has no effect.
2. There is a bug that comes up when /var is a symlink, and proftpd is restarted. When stopping proftpd, the /var symlink is removed; when it's started again a file named /var is created.


Upgrade your proftpd server to proftpd-1.2.0pre10-2.0potato1

Plugin Details

Severity: Medium

ID: 11450

File Name: proftpd_debian.nasl

Version: $Revision: 1.11 $

Type: remote

Family: FTP

Published: 2003/03/23

Modified: 2013/01/05

Dependencies: 10092

Risk Information

Risk Factor: Medium


Base Score: 5.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:P

Vulnerability Information

CPE: cpe:/a:proftpd:proftpd

Required KB Items: ftp/proftpd

Vulnerability Publication Date: 2001/03/07

Reference Information

CVE: CVE-2001-0456

OSVDB: 5638

DSA: 032