Security Advisory

CVE-2020-9273

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-20 15:22:53

Last updated 2024-08-04 10:26:16

Assigner mitre

State PUBLISHED

Description

In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-after-free in alloc_pool in pool.c, and possible remote code execution.

← Browse all CVEs View on cve.org ↗