Buffer Overflow Vulnerability in ProFTPD by ProFTPD Project
CVE-2003-0831

Currently unrated

Key Information:

Vendor: Proftpd Project
Status: Proftpd
Vendor: CVE Published:; 17 November 2003

🔔 Create Proftpd Project Vulnerability Alert

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 40%

What is CVE-2003-0831?

ProFTPD versions 1.2.7 through 1.2.9rc2 contain a vulnerability where newline characters are not correctly translated during file transfers in ASCII mode. This flaw creates an opportunity for remote attackers to execute arbitrary code through a buffer overflow, significantly compromising system integrity. It is essential for users of the affected versions to implement necessary patches and security updates to mitigate potential risks.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2003-0831 - Proof of Concept

References

http://marc.info/?l=bugtraq&m=106606885611269&w=2

mailing-listx_refsource_BUGTRAQ

http://xforce.iss.net/xforce/alerts/id/154

third-party-advisoryx_refsource_ISS

http://www.kb.cert.org/vuls/id/405348

third-party-advisoryx_refsource_CERT-VN

EPSS Score

40% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Nov 17, 2003
👾
Exploit known to exist
Nov 17, 2003
Vulnerability published
Nov 17, 2003
Vulnerability Reserved
Sep 24, 2003

CVE-2003-0831 Data

JSON