Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1575

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2011-1575
Last Modified 20 Feb 2014 11:41:44
Published 23 May 2011 06:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1575

Summary

The STARTTLS implementation in ftp_parser.c in Pure-FTPd before 1.0.30 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted FTP sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.

Vulnerable Systems

Application

  • Pureftpd Pure-ftpd 0.90

  • Pureftpd Pure-ftpd 0.91

  • Pureftpd Pure-ftpd 0.92

  • Pureftpd Pure-ftpd 0.93

  • Pureftpd Pure-ftpd 0.94

  • Pureftpd Pure-ftpd 0.95

  • Pureftpd Pure-ftpd 0.95-pre1

  • Pureftpd Pure-ftpd 0.95-pre2

  • Pureftpd Pure-ftpd 0.95-pre3

  • Pureftpd Pure-ftpd 0.95-pre4

  • Pureftpd Pure-ftpd 0.95.1

  • Pureftpd Pure-ftpd 0.95.2

  • Pureftpd Pure-ftpd 0.96

  • Pureftpd Pure-ftpd 0.96.1

  • Pureftpd Pure-ftpd 0.96pre1

  • Pureftpd Pure-ftpd 0.97-final

  • Pureftpd Pure-ftpd 0.97.1

  • Pureftpd Pure-ftpd 0.97.2

  • Pureftpd Pure-ftpd 0.97.3

  • Pureftpd Pure-ftpd 0.97.4

  • Pureftpd Pure-ftpd 0.97.5

  • Pureftpd Pure-ftpd 0.97.6

  • Pureftpd Pure-ftpd 0.97.7

  • Pureftpd Pure-ftpd 0.97.7pre1

  • Pureftpd Pure-ftpd 0.97.7pre2

  • Pureftpd Pure-ftpd 0.97.7pre3

  • Pureftpd Pure-ftpd 0.97pre1

  • Pureftpd Pure-ftpd 0.97pre2

  • Pureftpd Pure-ftpd 0.97pre3

  • Pureftpd Pure-ftpd 0.97pre4

  • Pureftpd Pure-ftpd 0.97pre5

  • Pureftpd Pure-ftpd 0.98-final

  • Pureftpd Pure-ftpd 0.98.1

  • Pureftpd Pure-ftpd 0.98.2

  • Pureftpd Pure-ftpd 0.98.2a

  • Pureftpd Pure-ftpd 0.98.3

  • Pureftpd Pure-ftpd 0.98.4

  • Pureftpd Pure-ftpd 0.98.5

  • Pureftpd Pure-ftpd 0.98.6

  • Pureftpd Pure-ftpd 0.98.7

  • Pureftpd Pure-ftpd 0.98pre1

  • Pureftpd Pure-ftpd 0.98pre2

  • Pureftpd Pure-ftpd 0.99

  • Pureftpd Pure-ftpd 0.99.1

  • Pureftpd Pure-ftpd 0.99.1a

  • Pureftpd Pure-ftpd 0.99.1b

  • Pureftpd Pure-ftpd 0.99.2

  • Pureftpd Pure-ftpd 0.99.2a

  • Pureftpd Pure-ftpd 0.99.3

  • Pureftpd Pure-ftpd 0.99.4

  • Pureftpd Pure-ftpd 0.99.9

  • Pureftpd Pure-ftpd 0.99a

  • Pureftpd Pure-ftpd 0.99b

  • Pureftpd Pure-ftpd 0.99pre1

  • Pureftpd Pure-ftpd 0.99pre2

  • Pureftpd Pure-ftpd 1.0.0

  • Pureftpd Pure-ftpd 1.0.1

  • Pureftpd Pure-ftpd 1.0.10

  • Pureftpd Pure-ftpd 1.0.11

  • Pureftpd Pure-ftpd 1.0.12

  • Pureftpd Pure-ftpd 1.0.13a

  • Pureftpd Pure-ftpd 1.0.14

  • Pureftpd Pure-ftpd 1.0.15

  • Pureftpd Pure-ftpd 1.0.16a

  • Pureftpd Pure-ftpd 1.0.16b

  • Pureftpd Pure-ftpd 1.0.16c

  • Pureftpd Pure-ftpd 1.0.17

  • Pureftpd Pure-ftpd 1.0.17a

  • Pureftpd Pure-ftpd 1.0.18

  • Pureftpd Pure-ftpd 1.0.19

  • Pureftpd Pure-ftpd 1.0.2

  • Pureftpd Pure-ftpd 1.0.20

  • Pureftpd Pure-ftpd 1.0.21

  • Pureftpd Pure-ftpd 1.0.22

  • Pureftpd Pure-ftpd 1.0.24

  • Pureftpd Pure-ftpd 1.0.25

  • Pureftpd Pure-ftpd 1.0.26

  • Pureftpd Pure-ftpd 1.0.27

  • Pureftpd Pure-ftpd 1.0.28

  • Pureftpd Pure-ftpd 1.0.29

  • Pureftpd Pure-ftpd 1.0.3

  • Pureftpd Pure-ftpd 1.0.4

  • Pureftpd Pure-ftpd 1.0.5

  • Pureftpd Pure-ftpd 1.0.6

  • Pureftpd Pure-ftpd 1.0.7

  • Pureftpd Pure-ftpd 1.0.8

  • Pureftpd Pure-ftpd 1.0.9


References

CONFIRM - https://github.com/jedisct1/pure-ftpd/commit/65c4d4ad331e94661de763e9b5304d28698999c4

CONFIRM - https://bugzilla.novell.com/show_bug.cgi?id=686590

MLIST - [pure-ftpd] 20110308 Re: Pure-FTPd 1.0.30 has been released

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=683221

CONFIRM - http://www.pureftpd.org/project/pure-ftpd/news

SECUNIA - 44548

SECUNIA - 43988

MLIST - [oss-security] 20110411 Re: pure-ftpd STARTTLS command injection / new CVE?

MLIST - [oss-security] 20110411 pure-ftpd STARTTLS command injection / new CVE?

MLIST - [opensuse-updates] 20110512 openSUSE-SU-2011:0483-1 (moderate): New pure-ftpd version fix STARTTLS issues (CVE-2011-1575).

MLIST - [pure-ftpd] 20110308 Pure-FTPd 1.0.30 has been released

SUSE - SUSE-SR:2011:009


Last Updated: 27 May 2016 11:04:29