What is the severity of CVE-2013-4359?

CVE-2013-4359 has a severity rating that indicates it can cause a denial of service due to memory consumption issues.

How do I fix CVE-2013-4359?

To fix CVE-2013-4359, upgrade to ProFTPD version 1.3.5 or later which addresses this integer overflow vulnerability.

What causes the vulnerability CVE-2013-4359?

CVE-2013-4359 is caused by an integer overflow in the kbdint.c file in mod_sftp, triggered by a large response count value during authentication.

Which versions of ProFTPD are affected by CVE-2013-4359?

CVE-2013-4359 affects ProFTPD versions 1.3.4d and 1.3.5r3.

What types of attacks can exploit CVE-2013-4359?

CVE-2013-4359 can be exploited by remote attackers to cause denial of service through excessive memory consumption.

Vulnerability/
CVE-2013-4359

medium

CWE

189 190

30/9/2013

6/8/2024

CVE-2013-4359: Integer Overflow

First published: Mon Sep 30 2013(Updated: )

Integer overflow in kbdint.c in mod_sftp in ProFTPD 1.3.4d and 1.3.5r3 allows remote attackers to cause a denial of service (memory consumption) via a large response count value in an authentication request, which triggers a large memory allocation.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
ProFTPD	=1.3.4-d
ProFTPD	=1.3.5-rc3

Remedy

http://bugs.proftpd.org/show_bug.cgi?id=3973

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-4359?
CVE-2013-4359 has a severity rating that indicates it can cause a denial of service due to memory consumption issues.
How do I fix CVE-2013-4359?
To fix CVE-2013-4359, upgrade to ProFTPD version 1.3.5 or later which addresses this integer overflow vulnerability.
What causes the vulnerability CVE-2013-4359?
CVE-2013-4359 is caused by an integer overflow in the kbdint.c file in mod_sftp, triggered by a large response count value during authentication.
Which versions of ProFTPD are affected by CVE-2013-4359?
CVE-2013-4359 affects ProFTPD versions 1.3.4d and 1.3.5r3.
What types of attacks can exploit CVE-2013-4359?
CVE-2013-4359 can be exploited by remote attackers to cause denial of service through excessive memory consumption.

agent/softwarecombine
agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/weakness
agent/severity
agent/remedy
agent/author
agent/event
agent/description
agent/first-publish-date
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/proftpd
canonical/proftpd
version/proftpd/1.3.4-d
version/proftpd/1.3.5-rc3

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.