Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <alpine.DEB.2.00.1101141348250.3549@familiar.castaglia.org>
Date: Fri, 14 Jan 2011 13:50:02 -0800 (PST)
From: "TJ Saunders" <tj@...taglia.org>
To: oss-security@...ts.openwall.com
cc: coley <coley@...re.org>
Subject: Re: CVE request: proftpd before 1.3.3d


> I could have swore this flaw got an ID, but I can't find it.

  http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4221

Was the one assigned for the Telnet IAC issue:

  http://bugs.proftpd.org/show_bug.cgi?id=3521

The issue from the Phrack article did not have a CVE assigned, to my 
knowledge; it was related to code in ProFTPD's mod_sql module:

  http://bugs.proftpd.org/show_bug.cgi?id=3536

Cheers,
TJ

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

   He who has never hoped can never despair.

   	-George Bernard Shaw

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.