An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to (is facilitated by) CVE-2015-3306. Upstream Issue: http://bugs.proftpd.org/show_bug.cgi?id=4372 Upstream Patch: https://github.com/proftpd/proftpd/pull/816
Created proftpd tracking bugs for this issue: Affects: epel-all [bug 1732367] Affects: fedora-all [bug 1732366]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.