Improper Configuration of Proftpd Run Privilege in Debian 2.2

Improper Configuration of Proftpd Run Privilege in Debian 2.2

CVE-2001-0456 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

postinst installation script for Proftpd in Debian 2.2 does not properly change the "run as uid/gid root" configuration when the user enables anonymous access, which causes the server to run at a higher privilege than intended.

Learn more about our Cis Benchmark Audit For Debian Linux.