CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-57392: Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remote attacker to execute arbitrary code and can cause a Denial of Service (DoS)...

Description

Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remote attacker to execute arbitrary code and can cause a Denial of Service (DoS) on the FTP service by sending a maliciously crafted message to the ProFTPD service port.

Classification

CVE ID: CVE-2024-57392

Affected Products

Vendor: n/a

Product: n/a

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.87% (scored less or equal to compared to others)

EPSS Date: 2025-03-07 (when was this score calculated)

References

https://github.com/Br1m4zz/protocol_vul_repoduce.git

Timeline

2025-02-07 00:31:26 UTC
CVE

Buffer Overflow vulnerability in Proftpd commit 4017eff8 allows a remote attacker to execute arbitrary code and can cause a Denial of Service (DoS)...
2025-03-03 02:45:19 UTC
Tenable Plugins

Debian dla-4077 : proftpd-basic - security update
2025-03-27 12:15:28 UTC
Tenable Plugins

SUSE SLES15 / openSUSE 15 Security Update : proftpd (SUSE-SU-2025:1028-1)
2025-04-01 10:15:26 UTC
Tenable Plugins

EulerOS 2.0 SP13 : proftpd (EulerOS-SA-2025-1339)
2025-04-01 10:15:26 UTC
Tenable Plugins

EulerOS 2.0 SP13 : proftpd (EulerOS-SA-2025-1322)