FreeBSD : ProFTPD ASCII translation bug resulting in remote root compromise (cf0fb426-3f96-11d8-b096-0020ed76ef5a)
High Nessus Plugin ID 37015
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionA buffer overflow exists in the ProFTPD code that handles translation of newline characters during ASCII-mode file uploads. An attacker may exploit this buffer overflow by uploading a specially crafted file, resulting in code execution and ultimately a remote root compromise.
SolutionUpdate the affected package.