Exploitation Summary
CVE-2015-1419 has a Nuclei detection template available — see the Nuclei card below for the Shodan/FOFA recon queries.
Description
Unspecified vulnerability in vsftpd 3.0.2 and earlier allows remote attackers to bypass access restrictions via unknown vectors, related to deny_file parsing.
Nuclei Templates (1)
vsftpd <= 3.0.2 - Access Restriction Bypass
MEDIUMVERIFIEDby pussycat0x
Shodan:
vsFTPd
References (3)
Core 3
Core References
Patch, Vendor Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2015-01/msg00023.html
Vendor Advisory vendor-advisory
x_refsource_suse
http://lists.opensuse.org/opensuse-updates/2015-01/msg00041.html
Broken Link third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/62415
Scores
EPSS
0.7609
EPSS Percentile
98.9%
Details
Status
published
Products (3)
opensuse/opensuse
13.1
opensuse/opensuse
13.2
vsftpd_project/vsftpd
< 3.0.2
Published
Jan 28, 2015
Tracked Since
Feb 18, 2026