CVE-2017-15271

Name of the Vulnerable Software and Affected Versions PSFTPd version 10.0.4 Build 729

Description A use-after-free issue can be triggered remotely in the SFTP component. This issue can be triggered prior to authentication, allowing for a denial-of-service (DoS) attack against the service. By sending a crafted SSH identification/version string to the server, a NULL pointer dereference can be caused due to a race condition in the window message handling. This is a result of incorrect cleanup code for invalid connections, leading to a use-after-free.

Recommendations For PSFTPd version 10.0.4 Build 729, consider disabling the SFTP component until a patch is available to prevent exploitation. Restrict access to the SSH service to minimize the risk of a DoS attack. Avoid using crafted SSH identification/version strings in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.