• Plesk Uservoice will be deprecated by October. Moving forward, all product feature requests and improvement suggestions will be managed through our new platform Plesk Productboard.
    To continue sharing your ideas and feedback, please visit features.plesk.com

critical issue: Plesk 11.09-proftp Update to 1.3.5 or 1.3.4e possible?

G

GerdSchrewe

Basic Pleskian
Ubuntu 12.04, Plesk 11.09 mu63
proftp Version 1.3.4
Vadim Melihow reported a critical issue with proftpd installations that use the
mod_copy module's SITE CPFR/SITE CPTO commands; mod_copy allows these commands
to be used by *unauthenticated clients*:

How can i update proftp?
Will paralleles offer a fix?

Unauthenticated copying of files via SITE CPFR/CPTO allowed by mod_copy
Reported: 2015-04-07 16:35 UTC by TJ Saunders
Modified: 2015-04-15 17:53 UTC (History)
http://bugs.proftpd.org/show_bug.cgi?id=4169


Thanx a lot for help!
 
You must log in or register to reply here.

Similar threads

J
Critical security issue in Plesk 10 Proftpd
Replies
12
Views
10K
madsere
madsere
S
Plesk 7.6.1 for Windows Update 070219.16 is released
Replies
0
Views
4K
sergius
S
Back
Top