What is the severity of CVE-2005-2390?

CVE-2005-2390 has a moderate severity level as it can cause denial of service and potentially expose sensitive information.

How do I fix CVE-2005-2390?

To fix CVE-2005-2390, upgrade ProFTPD to version 1.3.0rc2 or later.

Which ProFTPD versions are affected by CVE-2005-2390?

ProFTPD versions before 1.3.0rc2, including 1.2.1 through 1.2.10 and several release candidates, are affected by CVE-2005-2390.

What types of vulnerabilities are associated with CVE-2005-2390?

CVE-2005-2390 includes multiple format string vulnerabilities that can lead to denial of service and information disclosure.

Is CVE-2005-2390 a critical vulnerability?

CVE-2005-2390 is not classified as critical, but it should still be addressed to prevent potential exploits.

Vulnerability/
CVE-2005-2390

medium

6.4

CWE

NVD-CWE-Other

27/7/2005

7/8/2024

CVE-2005-2390

First published: Wed Jul 27 2005(Updated: )

Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via (1) certain inputs to the shutdown message from ftpshut, or (2) the SQLShowInfo mod_sql directive.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
ProFTPD	=1.2.10_rc2
ProFTPD	=1.2.3
ProFTPD	=1.2.6_rc2
ProFTPD	=1.2.6_rc3
ProFTPD	=1.2.1
ProFTPD	=1.2.7_rc3
ProFTPD	=1.2.4
ProFTPD	=1.2.7_rc2
ProFTPD	=1.2.5_rc2
ProFTPD	=1.3.0_rc1
ProFTPD	=1.2.9
ProFTPD	=1.2.0_rc1
ProFTPD	=1.2.10_rc1
ProFTPD	=1.2.1_final
ProFTPD	=1.2.0_pre9
ProFTPD	=1.2.9_rc2
ProFTPD	=1.2.0_rc2
ProFTPD	=1.2.7
ProFTPD	=1.2.2_rc1
ProFTPD	=1.2.6
ProFTPD	=1.2.10_rc3
ProFTPD	=1.2.8_rc1
ProFTPD	=1.2.6_rc1
ProFTPD	=1.2.9_rc1
ProFTPD	=1.2.2_rc2
ProFTPD	=1.2.0_rc3
ProFTPD	=1.2.7_rc1
ProFTPD	=1.2.8
ProFTPD	=1.2.2_rc3
ProFTPD	=1.2.9_rc3
ProFTPD	=1.2.5_rc3
ProFTPD	=1.2.8_rc2
ProFTPD	=1.2.5
ProFTPD	=1.2.2
ProFTPD	=1.2.0_pre10
ProFTPD	=1.2.10
ProFTPD	=1.2.5_rc1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-2390?
CVE-2005-2390 has a moderate severity level as it can cause denial of service and potentially expose sensitive information.
How do I fix CVE-2005-2390?
To fix CVE-2005-2390, upgrade ProFTPD to version 1.3.0rc2 or later.
Which ProFTPD versions are affected by CVE-2005-2390?
ProFTPD versions before 1.3.0rc2, including 1.2.1 through 1.2.10 and several release candidates, are affected by CVE-2005-2390.
What types of vulnerabilities are associated with CVE-2005-2390?
CVE-2005-2390 includes multiple format string vulnerabilities that can lead to denial of service and information disclosure.
Is CVE-2005-2390 a critical vulnerability?
CVE-2005-2390 is not classified as critical, but it should still be addressed to prevent potential exploits.

agent/first-publish-date
agent/softwarecombine
agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/severity
agent/author
agent/description
agent/event
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/proftpd project
canonical/proftpd
version/proftpd/1.2.10_rc2
version/proftpd/1.2.3
version/proftpd/1.2.6_rc2
version/proftpd/1.2.6_rc3
version/proftpd/1.2.1
version/proftpd/1.2.7_rc3
version/proftpd/1.2.4
version/proftpd/1.2.7_rc2
version/proftpd/1.2.5_rc2
version/proftpd/1.3.0_rc1
version/proftpd/1.2.9
version/proftpd/1.2.0_rc1
version/proftpd/1.2.10_rc1
version/proftpd/1.2.1_final
version/proftpd/1.2.0_pre9
version/proftpd/1.2.9_rc2
version/proftpd/1.2.0_rc2
version/proftpd/1.2.7
version/proftpd/1.2.2_rc1
version/proftpd/1.2.6
version/proftpd/1.2.10_rc3
version/proftpd/1.2.8_rc1
version/proftpd/1.2.6_rc1
version/proftpd/1.2.9_rc1
version/proftpd/1.2.2_rc2
version/proftpd/1.2.0_rc3
version/proftpd/1.2.7_rc1
version/proftpd/1.2.8
version/proftpd/1.2.2_rc3
version/proftpd/1.2.9_rc3
version/proftpd/1.2.5_rc3
version/proftpd/1.2.8_rc2
version/proftpd/1.2.5
version/proftpd/1.2.2
version/proftpd/1.2.0_pre10
version/proftpd/1.2.10
version/proftpd/1.2.5_rc1