摘要:
The FTP (aka Implementation of a simple FTP client and server ) project through 96c1a35 allows remote attackers to cause a denial of service (memory consumption) by engaging in client activity, such as establishing and then terminating a connection. This occurs because malloc is used but free is not.
安全等级: Low
公告ID: KylinSec-SA-2023-1123
发布日期: 2023年3月1日
关联CVE: CVE-2023-22551
The FTP (aka Implementation of a simple FTP client and server ) project through 96c1a35 allows remote attackers to cause a denial of service (memory consumption) by engaging in client activity, such as establishing and then terminating a connection. This occurs because malloc is used but free is not.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2023-22551 | KY3.4-4A | ftp | Unaffected |
| CVE-2023-22551 | KY3.4-5A | ftp | Unaffected |
| CVE-2023-22551 | KY3.5.1 | ftp | Unaffected |
| CVE-2023-22551 | KY3.5.2 | ftp | Unaffected |
