What is the severity of CVE-2001-0136?

CVE-2001-0136 is considered a medium severity vulnerability as it can lead to a denial of service due to memory leak issues.

How do I fix CVE-2001-0136?

To fix CVE-2001-0136, upgrade ProFTPd to a version later than 1.2.0rc2 where this vulnerability has been addressed.

What systems are affected by CVE-2001-0136?

CVE-2001-0136 affects ProFTPd version 1.2.0rc2 and potentially systems running Conectiva Linux, Debian Linux 2.2, and Mandrake Linux 7.2.

What type of attack can be executed with CVE-2001-0136?

Attackers can execute a denial of service attack by sending a series of USER commands to exploit the memory leak in CVE-2001-0136.

Is CVE-2001-0136 still relevant today?

While CVE-2001-0136 is an older vulnerability, it is still relevant for legacy systems that run the affected versions of ProFTPd.

Vulnerability/
CVE-2001-0136

medium

CWE

399 401

12/3/2001

18/9/2001

8/8/2024

CVE-2001-0136

First published: Mon Mar 12 2001(Updated: )

Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
ProFTPD	=1.2.0-rc2
Conectiva Linux
Debian GNU/Linux	=2.2
Mandrake Linux	=7.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2001-0136?
CVE-2001-0136 is considered a medium severity vulnerability as it can lead to a denial of service due to memory leak issues.
How do I fix CVE-2001-0136?
To fix CVE-2001-0136, upgrade ProFTPd to a version later than 1.2.0rc2 where this vulnerability has been addressed.
What systems are affected by CVE-2001-0136?
CVE-2001-0136 affects ProFTPd version 1.2.0rc2 and potentially systems running Conectiva Linux, Debian Linux 2.2, and Mandrake Linux 7.2.
What type of attack can be executed with CVE-2001-0136?
Attackers can execute a denial of service attack by sending a series of USER commands to exploit the memory leak in CVE-2001-0136.
Is CVE-2001-0136 still relevant today?
While CVE-2001-0136 is an older vulnerability, it is still relevant for legacy systems that run the affected versions of ProFTPd.

agent/references
agent/first-publish-date
agent/type
agent/severity
agent/weakness
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/source
agent/author
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/tags
agent/softwarecombine
collector/nvd-historical
collector/nvd-index
vendor/proftpd
canonical/proftpd
version/proftpd/1.2.0-rc2
vendor/conectiva
canonical/conectiva linux
vendor/debian
canonical/debian gnu/linux
version/debian gnu/linux/2.2
vendor/mandrakesoft
canonical/mandrake linux
version/mandrake linux/7.2

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.