PT-2020-20566 · Proftpd+3 · Proftpd+3

Antonio Morales

Published

2020-02-20

Updated

2025-10-22

CVE-2020-9272

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions ProFTPD version 1.3.7

Description The issue is an out-of-bounds (OOB) read vulnerability in the mod cap module via the cap to text function in cap text.c.

Recommendations For ProFTPD version 1.3.7, consider disabling the mod cap module until a patch is available. Restrict access to the cap to text function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALT-PU-2020-2975

ALT-PU-2020-2992

ALT-PU-2021-2692

ALT-PU-2023-5874

ALT-PU-2024-13729

BDU:2025-13442

CVE-2020-9272

OPENSUSE-SU-2020:0273-1

OPENSUSE-SU-2020_0273-1

OPENSUSE-SU-2024:11196-1

Affected Products

Alt Linux

Proftpd

Red Os

Suse

PT-2020-20566 · Proftpd+3 · Proftpd+3

CVE-2020-9272

Weakness Enumeration

Related Identifiers

Affected Products

References · 26