CVE-2004-2259

N/A Unknown

Published: December 31, 2004 Modified: April 16, 2026

Description

vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service (crash) via a SIGCHLD signal during a malloc or free call, which is not re-entrant.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-1.2.2/Changelog

Source: cve@mitre.org

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=119136

Source: cve@mitre.org

http://rhn.redhat.com/errata/RHBA-2004-164.html

Source: cve@mitre.org

Patch

http://secunia.com/advisories/11680

Source: cve@mitre.org

Patch Vendor Advisory

http://secunia.com/advisories/11736

Source: cve@mitre.org

Patch Vendor Advisory

http://www.osvdb.org/6306

Source: cve@mitre.org

Patch

http://www.securityfocus.com/bid/10394

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/16222

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11049

Source: cve@mitre.org

ftp://vsftpd.beasts.org/users/cevans/untar/vsftpd-1.2.2/Changelog