NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.

Forum Discussion

Wadester's avatar
Wadester
Aspirant
Mar 17, 2011

ProFTPD 1.3.3 Server

According to http://www.proftpd.org site, some variations of the 1.3.3 version of ProFTPD were compromised. Apparently the 1.3.3d version, which was released in December, contains the fix. When we l...
Installation & Upgrade
Xophile's avatar
Xophile
Aspirant
Jul 21, 2011
Ok, I understand!

I'm running a Ultra-4 with the latest firmware and my ProFTPD version is the same as yours (1.3.3.c).

On the main site these changes are listed:
1.3.3e
---------

+ Display messages work properly again.

+ Fixes plaintext command injection vulnerability in FTPS implementation
(i.e. mod_tls). See http://bugs.proftpd.org/show_bug.cgi?id=3624 for
details.

+ Fixes CVE-2011-1137 (badly formed SSH messages cause DoS). See
http://bugs.proftpd.org/show_bug.cgi?id=3586 for details.

+ Performance improvements, especially during server startup/restarts.

1.3.3d
---------

+ Fixed sql_prepare_where() buffer overflow (Bug#3536)
+ Fixed CPU spike when handling .ftpaccess files.
+ Fixed handling of SFTP uploads when compression is used.

Do you know if it's easy to upgrade from current 1.3.3.c to the lastest 1.3.3.e using SSH?

NETGEAR Academy

Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology! 

Join Us!

ProSupport for Business

Comprehensive support plans for maximum network uptime and business peace of mind.

 

Learn More