FreeBSD : proftpd -- multiple sql injection vulnerabilities (ca0841ff-1254-11de-a964-0030843d3802)

High Nessus Plugin ID 35941


The remote FreeBSD host is missing one or more security-related updates.


Secunia reports :

Some vulnerabilities have been reported in ProFTPD, which can be exploited by malicious people to conduct SQL injection attacks.

The application improperly sets the character encoding prior to performing SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code in an environment using a multi-byte character encoding.

An error exists in the 'mod_sql' module when processing e.g. user names containing '%' characters. This can be exploited to bypass input sanitation routines and manipulate SQL queries by injecting arbitrary SQL code.


Update the affected packages.

See Also

Plugin Details

Severity: High

ID: 35941

File Name: freebsd_pkg_ca0841ff125411dea9640030843d3802.nasl

Version: $Revision: 1.15 $

Type: local

Published: 2009/03/17

Modified: 2013/06/22

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:proftpd, p-cpe:/a:freebsd:freebsd:proftpd-devel, p-cpe:/a:freebsd:freebsd:proftpd-mysql, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2009/03/16

Vulnerability Publication Date: 2009/02/06

Exploitable With

CANVAS (D2ExploitPack)

Reference Information

CVE: CVE-2009-0542, CVE-2009-0543

EDB-ID: 8037

Secunia: 33842

CWE: 89