Unrated severityNVD Advisory· Published Aug 18, 2004· Updated Apr 16, 2026

CVE-2004-0432

Description

ProFTPD 1.2.9 treats the Allow and Deny directives for CIDR based ACL entries as if they were AllowAll, which could allow FTP clients to bypass intended access restrictions.

Affected products

Proftpd/Proftpd
cpe:2.3:a:proftpd_project:proftpd:1.2.9:*:*:*:*:*:*:*
Gentoo/Linux8 versions
cpe:2.3:o:gentoo:linux:0.5:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:o:gentoo:linux:0.5:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:0.7:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.1a:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.2:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.4:*:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.4:rc1:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.4:rc2:*:*:*:*:*:*
- cpe:2.3:o:gentoo:linux:1.4:rc3:*:*:*:*:*:*
Trustix/Secure Linux2 versions
cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*
- cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/10252nvdPatchVendor Advisory
bugs.proftpd.org/show_bug.cginvd
marc.infonvd
marc.infonvd
secunia.com/advisories/11527nvd
www.mandriva.com/security/advisoriesnvd
exchange.xforce.ibmcloud.com/vulnerabilities/16038nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000