Vulnerabilities > CVE-2020-9272 - Out-of-bounds Read vulnerability in multiple products

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

nessus

NVD

Published: 2020-02-20

Updated: 2021-11-09

Summary

ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap via the cap_text.c cap_to_text function.

Part	Description	Count
Application	Proftpd Proftpd Proftpd 1.2.0 Proftpd Proftpd 1.2.1 Proftpd Proftpd 1.2.2 Proftpd Proftpd 1.2.3 Proftpd Proftpd 1.2.4 Proftpd Proftpd 1.2.5 Proftpd Proftpd 1.2.6 Proftpd Proftpd 1.2.7 Proftpd Proftpd 1.2.8 Proftpd Proftpd 1.2.9 Proftpd Proftpd 1.2.10 Proftpd Proftpd 1.3.0 Proftpd Proftpd 1.3.1 Proftpd Proftpd 1.3.2 Proftpd Proftpd 1.3.3 Proftpd Proftpd 1.3.4 Proftpd Proftpd 1.3.5 Proftpd Proftpd 1.3.5A Proftpd Proftpd 1.3.5B Proftpd Proftpd 1.3.5C Proftpd Proftpd 1.3.5D Proftpd Proftpd 1.3.5E Proftpd Proftpd 1.3.6	92
Application	Opensuse Opensuse Backports SLE 15.0	2
OS	Siemens Siemens Simatic NET CP 1543 1 Firmware 2.2 Siemens Simatic NET CP 1545 1 Firmware *	2
OS	Opensuse Opensuse Leap 15.1	1
Hardware	Siemens Siemens Simatic NET CP 1543 1 - Siemens Simatic NET CP 1545 1 -	2

Overread Buffers
An adversary attacks a target by providing input that causes an application to read beyond the boundary of a defined buffer. This typically occurs when a value influencing where to start or stop reading is set to reflect positions outside of the valid memory location of the buffer. This type of attack may result in exposure of sensitive information, a system crash, or arbitrary code execution.

NASL family	SuSE Local Security Checks
NASL id	OPENSUSE-2020-273.NASL
description	This update for proftpd fixes the following issues : proftpd was updated to version 1.3.6c. Security issues fixed : - CVE-2020-9272: Fixed an out-of-bounds read in mod_cap (bsc#1164572). - CVE-2020-9273: Fixed a potential memory corruption caused by an interruption of the data transfer channel (bsc#1164574).
last seen	2020-03-18
modified	2020-03-02
plugin id	134196
published	2020-03-02
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/134196
title	openSUSE Security Update : proftpd (openSUSE-2020-273)

NASL family	Gentoo Local Security Checks
NASL id	GENTOO_GLSA-202003-35.NASL
description	The remote host is affected by the vulnerability described in GLSA-202003-35 (ProFTPd: Multiple vulnerabilities) Multiple vulnerabilities have been discovered in ProFTPd. Please review the CVE identifiers referenced below for details. Impact : A remote attacker, by interrupting the data transfer channel, could possibly execute arbitrary code with the privileges of the process or cause a Denial of Service condition. Workaround : There is no known workaround at this time.
last seen	2020-03-21
modified	2020-03-18
plugin id	134641
published	2020-03-18
reporter	This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/134641
title	GLSA-202003-35 : ProFTPd: Multiple vulnerabilities