Total vulnerabilities in the database
The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU consumption and process slot exhaustion) via crafted glob expressions in STAT commands in multiple FTP sessions, a different vulnerability than CVE-2010-2632.
| Software | From | Fixed in |
|---|---|---|
| vsftpd_project / vsftpd | - | 2.3.3 |
| canonical / ubuntu_linux | 10.10 | 10.10.x |
| canonical / ubuntu_linux | 9.10 | 9.10.x |
| canonical / ubuntu_linux | 8.04 | 8.04.x |
| canonical / ubuntu_linux | 10.04 | 10.04.x |
| canonical / ubuntu_linux | 6.06 | 6.06.x |
| fedoraproject / fedora | 13 | 13.x |
| fedoraproject / fedora | 15 | 15.x |
| fedoraproject / fedora | 14 | 14.x |
| debian / debian_linux | 5.0 | 5.0.x |
| debian / debian_linux | 7.0 | 7.0.x |
| debian / debian_linux | 6.0 | 6.0.x |
| suse / linux_enterprise_server | 11-sp1 | 11-sp1.x |
| suse / linux_enterprise_server | 9 | 9.x |
| opensuse / opensuse | 11.4 | 11.4.x |
| opensuse / opensuse | 11.2 | 11.2.x |
| opensuse / opensuse | 11.3 | 11.3.x |
| suse / linux_enterprise_server | 10-sp4 | 10-sp4.x |
| suse / linux_enterprise_server | 10-sp3 | 10-sp3.x |