CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
EPSS
Percentile
94.8%
Memory leak in a certain Red Hat deployment of vsftpd before 2.0.5 on Red Hat Enterprise Linux (RHEL) 3 and 4, when PAM is used, allows remote attackers to cause a denial of service (memory consumption) via a large number of invalid authentication attempts within the same session, a different vulnerability than CVE-2007-5962.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | vsftpd | <Β 3.0.3-13 | vsftpd_3.0.3-13_all.deb |
Debian | 11 | all | vsftpd | <Β 3.0.3-12 | vsftpd_3.0.3-12_all.deb |
Debian | 999 | all | vsftpd | <Β 3.0.3-13.1 | vsftpd_3.0.3-13.1_all.deb |
Debian | 13 | all | vsftpd | <Β 3.0.3-13.1 | vsftpd_3.0.3-13.1_all.deb |