Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
g.rodola pyftpdlib 0.3.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-7263
ftpserver.py in pyftpdlib prior to 0.5.0 does not delay its response after receiving an invalid login attempt, which makes it easier for remote malicious users to obtain access via a brute-force attack.
G.rodola Pyftpdlib 0.1.1
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.1
NA
CVE-2008-7264
The ftp_QUIT function in ftpserver.py in pyftpdlib prior to 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command during a disallowed data-transfer attempt.
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.1
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.1.1
NA
CVE-2009-5010
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib prior to 0.5.1 allows remote malicious users to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return ...
G.rodola Pyftpdlib 0.4.0
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.1
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.1.1
NA
CVE-2010-3494
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib prior to 0.5.2 allows remote malicious users to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected value o...
G.rodola Pyftpdlib 0.4.0
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.1
G.rodola Pyftpdlib 0.1.1
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.5.0
NA
CVE-2009-5011
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib prior to 0.5.2 allows remote malicious users to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN erro...
G.rodola Pyftpdlib 0.4.0
G.rodola Pyftpdlib 0.1.1
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.1
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.5.0
G.rodola Pyftpdlib 0.3.0
NA
CVE-2009-5012
ftpserver.py in pyftpdlib prior to 0.5.2 does not require the l permission for the MLST command, which allows remote authenticated users to bypass intended access restrictions and list the root directory via an FTP session.
G.rodola Pyftpdlib 0.1
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.4.0
G.rodola Pyftpdlib 0.5.0
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.1.1
NA
CVE-2009-5013
Memory leak in the on_dtp_close function in ftpserver.py in pyftpdlib prior to 0.5.2 allows remote authenticated users to cause a denial of service (memory consumption) by sending a QUIT command during a data transfer.
G.rodola Pyftpdlib 0.1.1
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.5.0
G.rodola Pyftpdlib 0.4.0
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.1
NA
CVE-2008-7262
Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib prior to 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a (1) CWD, (2) DELE, (3) STOR, or (4) RETR command.
G.rodola Pyftpdlib 0.1.1
G.rodola Pyftpdlib 0.1
G.rodola Pyftpdlib
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started