CVE-2017-7418

Metadata

low
2.1
proftpd-dfsg
CVE-2017-7418
cve.mitre.org, github.com, github.com, github.com, bugs.proftpd.org, bugs.debian.org
2017-04-04
2017-10-23 14:18
CVE-2017-7418 proftpd-dfsg
2017-07-20 21:30
2017-06-16 19:22
2017-05-10 23:47
2017-04-14 10:21
2017-04-07 00:03

Description

ProFTPD before 1.3.5e and 1.3.6 before 1.3.6rc5 controls whether the home directory of a user could contain a symbolic link through the AllowChrootSymlinks configuration option, but checks only the last path component when enforcing AllowChrootSymlinks. Attackers with local access could bypass the AllowChrootSymlinks control by replacing a path component (other than the last one) with a symbolic link. The threat model includes an attacker who is not granted full filesystem access by a hosting provider, but can reconfigure the home directory of an FTP user.

Am I vulnerable?

The constraints below list the versions that this vulnerability is patched in, and versions that are unaffected. If a patch is ready but unrealeased, then it is pending.

Or, you can just let us figure it out for you! Appcanary continously monitor your installed packages, and tell you if any of them are vulnerable.

Sign up for monitoring

Affected package information

Release Package Patched in
artful proftpd-dfsg None
devel proftpd-dfsg None
trusty proftpd-dfsg None
upstream proftpd-dfsg 1.3.5b-4
xenial proftpd-dfsg None
zesty proftpd-dfsg None

Unaffected

Release Package Reason
precise proftpd-dfsg ignored
precise/esm proftpd-dfsg DNE
vivid/stable-phone-overlay proftpd-dfsg DNE
vivid/ubuntu-core proftpd-dfsg DNE
yakkety proftpd-dfsg ignored