Fedora 20 : proftpd-1.3.4e-3.fc20 (2015-6401)

Critical Nessus Plugin ID 83198


The remote Fedora host is missing a security update.


Vadim Melihow reported a critical issue with proftpd installations that use the mod_copy module's SITE CPFR/SITE CPTO commands; mod_copy allows these commands to be used by *unauthenticated clients*

Upstream report: http://bugs.proftpd.org/show_bug.cgi?id=4169

This update contains a backported fix for this issue.

Note that mod_copy is not loaded/enabled by default in the Fedora package.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.


Update the affected proftpd package.

See Also




Plugin Details

Severity: Critical

ID: 83198

File Name: fedora_2015-6401.nasl

Version: Revision: 2.5

Type: local

Agent: unix

Published: 2015/05/04

Updated: 2015/11/16

Dependencies: 12634

Risk Information

Risk Factor: Critical

CVSS v2.0

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:fedoraproject:fedora:proftpd, cpe:/o:fedoraproject:fedora:20

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2015/04/18

Exploitable With


Metasploit (ProFTPD 1.3.5 Mod_Copy Command Execution)

Reference Information

CVE: CVE-2015-3306

FEDORA: 2015-6401