Unrated severityNVD Advisory· Published Jul 27, 2005· Updated Apr 16, 2026

CVE-2005-2390

Description

Multiple format string vulnerabilities in ProFTPD before 1.3.0rc2 allow attackers to cause a denial of service or obtain sensitive information via (1) certain inputs to the shutdown message from ftpshut, or (2) the SQLShowInfo mod_sql directive.

Affected products

Proftpd/Proftpd37 versions
cpe:2.3:a:proftpd_project:proftpd:1.2.0_pre10:*:*:*:*:*:*:*+ 36 more
- cpe:2.3:a:proftpd_project:proftpd:1.2.0_pre10:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.0_pre9:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.0_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.0_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.0_rc3:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.10:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.10_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.10_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.10_rc3:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.1_final:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.2:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.2_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.2_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.2_rc3:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.4:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.5:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.5_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.5_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.5_rc3:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.6_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.6_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.6_rc3:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.7_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.7_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.7_rc3:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.8:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.8_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.8_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.9:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.9_rc1:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.9_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.2.9_rc3:*:*:*:*:*:*:*
- cpe:2.3:a:proftpd_project:proftpd:1.3.0_rc1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/16181nvdVendor Advisory
marc.infonvd
www.debian.org/security/2005/dsa-795nvd
www.proftpd.org/docs/RELEASE_NOTES-1.3.0rc2nvd
www.securityfocus.com/bid/14380nvd
www.securityfocus.com/bid/14381nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000