DescriptionInteger overflow in the mod_sftp (aka SFTP) module in ProFTPD 1.3.3d and earlier allows remote attackers to cause a denial of service (memory consumption leading to OOM kill) via a malformed SSH message.
Overall state of this security issue: Does not affect SUSE products
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Tumbleweed|| ||Patchnames: |
openSUSE Tumbleweed GA proftpd-1.3.5b-2.5
SUSE Timeline for this CVECVE page created: Fri Jun 28 12:11:31 2013
CVE page last modified: Fri Oct 7 12:46:03 2022