Buffer Overflow Vulnerability in ProFTPD by ProFTPD Project
CVE-2024-57392

7.5HIGH

Key Information:

Vendor: ProFTPD Project
Status: ProFTPD
Vendor: CVE Published:; 6 February 2025

🔔 Create ProFTPD Project Vulnerability Alert

What is CVE-2024-57392?

A buffer overflow vulnerability has been identified in the ProFTPD service, enabling remote attackers to exploit the flaw by sending specifically crafted messages. This can lead to the execution of arbitrary code on the server, compromising its integrity and potentially disrupting service operations through Denial of Service (DoS) attacks. Proper mitigation measures must be implemented to safeguard against unauthorized system access and maintain service availability.

References

https://github.com/Br1m4zz/protocol_vul_repoduce.git

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 6, 2025
Vulnerability Reserved
Jan 9, 2025

CVE-2024-57392 Data

JSON