Launchpad.net

CVE 2011-4130

Use-after-free vulnerability in the Response API in ProFTPD before 1.3.3g allows remote authenticated users to execute arbitrary code via vectors involving an error that occurs after an FTP data transfer.

Related bugs and status

CVE-2011-4130 (Candidate) is related to these bugs:

Bug #905252: CVE-2011-4130 in lucid, maverick, natty

		In	Importance	Status
905252	CVE-2011-4130 in lucid, maverick, natty	proftpd-dfsg (Ubuntu)	Undecided	Fix Released
905252	CVE-2011-4130 in lucid, maverick, natty	proftpd-dfsg (Ubuntu Lucid)	Medium	Won't Fix
905252	CVE-2011-4130 in lucid, maverick, natty	proftpd-dfsg (Ubuntu Maverick)	Medium	Won't Fix
905252	CVE-2011-4130 in lucid, maverick, natty	proftpd-dfsg (Ubuntu Natty)	Medium	Won't Fix
905252	CVE-2011-4130 in lucid, maverick, natty	proftpd-dfsg (Ubuntu Oneiric)	Undecided	Won't Fix
905252	CVE-2011-4130 in lucid, maverick, natty	proftpd-dfsg (Ubuntu Precise)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2011-4130

Related bugs and status

Related bugs

References