ALPACA: Application Layer Protocol Confusion - Analyzing and Mitigating Cracks in TLS Authentication vsftpd: https://security.appspot.com/vsftpd/Changelog.txt (3.0.4) * Close the control connection after 10 unknown commands pre-login. * Reject any TLS ALPN advertisement that's not 'ftp'. * Add ssl_sni_hostname option to require a match on incoming SNI hostname. CREATE(Triage):(User=admin) CVE-2021-3618 (https://nvd.nist.gov/vuln/detail/CVE-2021-3618)
