ProFTPD.Server.Username.Handling.SQL.Injection
Description
This indicates an attack attempt against a remote SQL Injection vulnerability in ProFTPD.
The vulnerability is caused by an error when the software handles a specially crafted username. It allows a remote attacker to execute arbitrary SQL commands.
Affected Products
ProFTPD Project ProFTPD 1.3.2 rc2
ProFTPD Project ProFTPD 1.3.1
Impact
System Compromise.
Recommended Actions
Upgrade to the latest version of ProFTPD (1.3.2 or later):
http://www.proftpd.org/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |