CVE-2001-0136

ProFTPd 1.2.0rc2 - Denial of Service via USER Command Memory Leak

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2001-0136. PoCs published by JeT-Li, Piotr Zurawski.

AI-analyzed exploit summary This Java-based exploit targets a denial-of-service (DoS) vulnerability in ProFTPd by flooding the server with excessive USER or SIZE commands, leading to memory leakage and potential system crash.

Description

Memory leak in ProFTPd 1.2.0rc2 allows remote attackers to cause a denial of service via a series of USER commands, and possibly SIZE commands if the server has been improperly installed.

Exploits (3)

exploitdb WORKING POC VERIFIED
by JeT-Li · javadoslinux
https://www.exploit-db.com/exploits/244

This Java-based exploit targets a denial-of-service (DoS) vulnerability in ProFTPd by flooding the server with excessive USER or SIZE commands, leading to memory leakage and potential system crash.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: ProFTPd 1.2.0rc1, 1.2.0rc2, and possibly other 1.2.0preX versions
No auth needed
Prerequisites: Network access to the target FTP server
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Piotr Zurawski · cdoslinux
https://www.exploit-db.com/exploits/241

This exploit demonstrates a memory leakage vulnerability in ProFTPD 1.2.0rc2 by sending a large number of SIZE commands after logging in as an anonymous user, causing excessive memory consumption. The code establishes a TCP connection, authenticates, and then floods the server with SIZE requests to trigger the DoS condition.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: ProFTPD 1.2.0rc2
Auth required
Prerequisites: network access to the target ProFTPD server · anonymous authentication enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by JeT-Li · javadoslinux
https://www.exploit-db.com/exploits/20536

This Java-based exploit targets a memory leak vulnerability in ProFTPd by repeatedly sending either USER or SIZE commands to exhaust system memory, leading to a denial of service. It provides interactive options for attack intensity and supports both authenticated and unauthenticated modes.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: ProFTPd 1.2.0rc1, 1.2.0rc2, and possibly other 1.2.0preX versions
No auth needed
Prerequisites: Network access to the target FTP server
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Broken Link vendor-advisory x_refsource_mandrake
http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-021.php3
Broken Link vendor-advisory x_refsource_conectiva
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000380
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/5801
Exploit, Vendor Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-01/0122.html
Broken Link mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-01/0132.html
Broken Link mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2001-02/0267.html
Exploit, Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/152206
Third Party Advisory vendor-advisory x_refsource_debian
http://www.debian.org/security/2001/dsa-029

Scores

EPSS 0.4494
EPSS Percentile 98.6%

Details

CWE
CWE-401
Status published
Products (4)
conectiva/linux
debian/debian_linux 2.2
mandrakesoft/mandrake_linux 7.2
proftpd/proftpd 1.2.0 rc2
Published Mar 12, 2001
Tracked Since Feb 18, 2026