Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

vsftpd < 3.0.3 Security Bypass Vulnerability

Information

Severity

Severity

Medium

Family

Family

FTP

CVSSv2 Base

CVSSv2 Base

5.0

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Solution Type

Solution Type

Vendor Patch

Created

Created

7 years ago

Modified

Modified

7 years ago

Summary

The vsftp daemon was not handling the deny_file option properly, allowing unauthorized access in some specific scenarios

Affected Software

Affected Software

vsftpd versions 3.0.2 and below are vulnerable.

Solution

Solution

A fixed version 3.0.3 is available. Please see the references for more information.

Common Vulnerabilities and Exposures (CVE)