{"api_version":"1","generated_at":"2026-04-23T12:34:00+00:00","cve":"CVE-2007-2165","urls":{"html":"https://cve.report/CVE-2007-2165","api":"https://cve.report/api/cve/CVE-2007-2165.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2007-2165","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2007-2165"},"summary":{"title":"CVE-2007-2165","description":"The Auth API in ProFTPD before 20070417, when multiple simultaneous authentication modules are configured, does not require that the module that checks authentication is the same as the module that retrieves authentication data, which might allow remote attackers to bypass authentication, as demonstrated by use of SQLAuthTypes Plaintext in mod_sql, with data retrieved from /etc/passwd.","state":"PUBLISHED","assigner":"mitre","published_at":"2007-04-22 19:19:00","updated_at":"2026-04-23 00:35:47"},"problem_types":["NVD-CWE-Other","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"5.1","severity":"","vector":"AV:N/AC:H/Au:N/C:P/I:P/A:P","data":{"version":"2.0","vectorString":"AV:N/AC:H/Au:N/C:P/I:P/A:P","baseScore":5.1,"accessVector":"NETWORK","accessComplexity":"HIGH","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"}}],"references":[{"url":"http://www.securityfocus.com/bid/23546","name":"http://www.securityfocus.com/bid/23546","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"ProFTPD AUTH Multiple Authentication Module Security Bypass Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=419255","name":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=419255","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"#419255 - proftpd allows logins with almost no password if configured with SQLAuthTypes Plaintext - Debian Bug report logs","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://bugzilla.redhat.com/show_bug.cgi?id=237533","name":"https://bugzilla.redhat.com/show_bug.cgi?id=237533","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Bug 237533 – CVE-2007-2165: proftpd auth bypass vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2007:130","name":"http://www.mandriva.com/security/advisories?name=MDKSA-2007:130","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Advisories - Mandriva Linux","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://bugs.proftpd.org/show_bug.cgi?id=2922","name":"http://bugs.proftpd.org/show_bug.cgi?id=2922","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"Bug 2922 – Auth API allows one auth module to authenticate user data provided by a different auth module","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/27516","name":"http://secunia.com/advisories/27516","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Fedora update for proftpd - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/25724","name":"http://secunia.com/advisories/25724","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Mandriva update for proftpd - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/33733","name":"https://exchange.xforce.ibmcloud.com/vulnerabilities/33733","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"IBM X-Force Exchange","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00065.html","name":"https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00065.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"[SECURITY] Fedora 7 Update: proftpd-1.3.1-2.fc7","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2007/1444","name":"http://www.vupen.com/english/advisories/2007/1444","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://securitytracker.com/id?1017931","name":"http://securitytracker.com/id?1017931","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"SecurityTracker.com Archives - ProFTPD Auth API State Error May Let Remote Users Access the System in Certain Cases","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://osvdb.org/34602","name":"http://osvdb.org/34602","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"0"},{"url":"http://secunia.com/advisories/24867","name":"http://secunia.com/advisories/24867","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"ProFTPD Auth API Multiple Authentication Modules Security Issue - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2007-2165","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-2165","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2007","cve_id":"2165","vulnerable":"1","versionEndIncluding":"1.3.0_rc1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"proftpd_project","cpe5":"proftpd","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T13:23:50.950Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=419255"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://bugs.proftpd.org/show_bug.cgi?id=2922"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=237533"},{"name":"MDKSA-2007:130","tags":["vendor-advisory","x_refsource_MANDRIVA","x_transferred"],"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2007:130"},{"name":"25724","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/25724"},{"name":"23546","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/23546"},{"name":"24867","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/24867"},{"name":"34602","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/34602"},{"name":"ADV-2007-1444","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2007/1444"},{"name":"1017931","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://securitytracker.com/id?1017931"},{"name":"FEDORA-2007-2613","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00065.html"},{"name":"27516","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/27516"},{"name":"proftpd-authapi-security-bypass(33733)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/33733"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2007-04-16T00:00:00.000Z","descriptions":[{"lang":"en","value":"The Auth API in ProFTPD before 20070417, when multiple simultaneous authentication modules are configured, does not require that the module that checks authentication is the same as the module that retrieves authentication data, which might allow remote attackers to bypass authentication, as demonstrated by use of SQLAuthTypes Plaintext in mod_sql, with data retrieved from /etc/passwd."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2017-07-28T12:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"tags":["x_refsource_MISC"],"url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=419255"},{"tags":["x_refsource_CONFIRM"],"url":"http://bugs.proftpd.org/show_bug.cgi?id=2922"},{"tags":["x_refsource_CONFIRM"],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=237533"},{"name":"MDKSA-2007:130","tags":["vendor-advisory","x_refsource_MANDRIVA"],"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2007:130"},{"name":"25724","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/25724"},{"name":"23546","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/23546"},{"name":"24867","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/24867"},{"name":"34602","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/34602"},{"name":"ADV-2007-1444","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2007/1444"},{"name":"1017931","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://securitytracker.com/id?1017931"},{"name":"FEDORA-2007-2613","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00065.html"},{"name":"27516","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/27516"},{"name":"proftpd-authapi-security-bypass(33733)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/33733"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2007-2165","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The Auth API in ProFTPD before 20070417, when multiple simultaneous authentication modules are configured, does not require that the module that checks authentication is the same as the module that retrieves authentication data, which might allow remote attackers to bypass authentication, as demonstrated by use of SQLAuthTypes Plaintext in mod_sql, with data retrieved from /etc/passwd."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=419255","refsource":"MISC","url":"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=419255"},{"name":"http://bugs.proftpd.org/show_bug.cgi?id=2922","refsource":"CONFIRM","url":"http://bugs.proftpd.org/show_bug.cgi?id=2922"},{"name":"https://bugzilla.redhat.com/show_bug.cgi?id=237533","refsource":"CONFIRM","url":"https://bugzilla.redhat.com/show_bug.cgi?id=237533"},{"name":"MDKSA-2007:130","refsource":"MANDRIVA","url":"http://www.mandriva.com/security/advisories?name=MDKSA-2007:130"},{"name":"25724","refsource":"SECUNIA","url":"http://secunia.com/advisories/25724"},{"name":"23546","refsource":"BID","url":"http://www.securityfocus.com/bid/23546"},{"name":"24867","refsource":"SECUNIA","url":"http://secunia.com/advisories/24867"},{"name":"34602","refsource":"OSVDB","url":"http://osvdb.org/34602"},{"name":"ADV-2007-1444","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2007/1444"},{"name":"1017931","refsource":"SECTRACK","url":"http://securitytracker.com/id?1017931"},{"name":"FEDORA-2007-2613","refsource":"FEDORA","url":"https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00065.html"},{"name":"27516","refsource":"SECUNIA","url":"http://secunia.com/advisories/27516"},{"name":"proftpd-authapi-security-bypass(33733)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/33733"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2007-2165","datePublished":"2007-04-22T19:00:00.000Z","dateReserved":"2007-04-22T00:00:00.000Z","dateUpdated":"2024-08-07T13:23:50.950Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2007-04-22 19:19:00","lastModifiedDate":"2026-04-23 00:35:47","problem_types":["NVD-CWE-Other","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:H/Au:N/C:P/I:P/A:P","baseScore":5.1,"accessVector":"NETWORK","accessComplexity":"HIGH","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":4.9,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":true,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:proftpd_project:proftpd:*:*:*:*:*:*:*:*","versionEndIncluding":"1.3.0_rc1","matchCriteriaId":"B84D8596-CC91-4BE7-932D-EF6BDFD47561"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2007","CveId":"2165","Ordinal":"1","Title":"CVE-2007-2165","CVE":"CVE-2007-2165","Year":"2007"},"notes":[{"CveYear":"2007","CveId":"2165","Ordinal":"1","NoteData":"The Auth API in ProFTPD before 20070417, when multiple simultaneous authentication modules are configured, does not require that the module that checks authentication is the same as the module that retrieves authentication data, which might allow remote attackers to bypass authentication, as demonstrated by use of SQLAuthTypes Plaintext in mod_sql, with data retrieved from /etc/passwd.","Type":"Description","Title":"CVE-2007-2165"},{"CveYear":"2007","CveId":"2165","Ordinal":"2","NoteData":"2007-04-22","Type":"Other","Title":"Published"},{"CveYear":"2007","CveId":"2165","Ordinal":"3","NoteData":"2017-07-28","Type":"Other","Title":"Modified"}]}}}