Unspecified vulnerability in glFTPd before 2.01 RC5 allows remote attackers to bypass IP checks via a crafted DNS hostname, possibly a hostname that appears to be an IP address.
2006-03-19T01:02:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 7.5 (HIGH)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | glftpd | glftpd | 1.18 | Yes |
| Application | glftpd | glftpd | 1.19 | Yes |
| Application | glftpd | glftpd | 1.20 | Yes |
| Application | glftpd | glftpd | 1.21 | Yes |
| Application | glftpd | glftpd | 1.22 | Yes |
| Application | glftpd | glftpd | 1.23 | Yes |
| Application | glftpd | glftpd | 1.24 | Yes |
| Application | glftpd | glftpd | 1.25 | Yes |
| Application | glftpd | glftpd | 1.26 | Yes |
| Application | glftpd | glftpd | 1.27 | Yes |
| Application | glftpd | glftpd | 1.28 | Yes |
| Application | glftpd | glftpd | 1.29 | Yes |
| Application | glftpd | glftpd | 1.29.1 | Yes |
| Application | glftpd | glftpd | 1.30 | Yes |
| Application | glftpd | glftpd | 1.31 | Yes |
| Application | glftpd | glftpd | 1.32 | Yes |
| Application | glftpd | glftpd | 2.0 | Yes |
| Application | glftpd | glftpd | 2.0_rc1 | Yes |
| Application | glftpd | glftpd | 2.0_rc2 | Yes |
| Application | glftpd | glftpd | 2.0_rc3 | Yes |
| Application | glftpd | glftpd | 2.0_rc4 | Yes |
| Application | glftpd | glftpd | 2.0_rc5 | Yes |
| Application | glftpd | glftpd | 2.0_rc6 | Yes |
| Application | glftpd | glftpd | 2.0_rc7 | Yes |
| Application | glftpd | glftpd | 2.01_rc1 | Yes |
| Application | glftpd | glftpd | 2.01_rc2 | Yes |
| Application | glftpd | glftpd | 2.01_rc3 | Yes |
| Application | glftpd | glftpd | 2.01_rc4 | Yes |