CVE-2001-1501

Name of the Vulnerable Software and Affected Versions ProFTPD version 1.2.1

Description The issue allows remote attackers to cause a denial of service by consuming CPU and memory resources. This can be achieved by sending commands with a large number of wildcard and other special characters. For example, using an ls command with multiple sequences such as */.., */.*, or .*./*?/ in the argument can demonstrate this issue.

Recommendations For ProFTPD version 1.2.1, consider restricting or limiting the use of glob functionality to minimize the risk of denial of service attacks until a patch is available.