Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
g.rodola pyftpdlib 0.5.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-5012
ftpserver.py in pyftpdlib prior to 0.5.2 does not require the l permission for the MLST command, which allows remote authenticated users to bypass intended access restrictions and list the root directory via an FTP session.
G.rodola Pyftpdlib 0.1
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.4.0
G.rodola Pyftpdlib 0.5.0
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.1.1
NA
CVE-2010-3494
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib prior to 0.5.2 allows remote malicious users to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected value o...
G.rodola Pyftpdlib 0.4.0
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.1
G.rodola Pyftpdlib 0.1.1
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.5.0
NA
CVE-2009-5011
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib prior to 0.5.2 allows remote malicious users to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN erro...
G.rodola Pyftpdlib 0.4.0
G.rodola Pyftpdlib 0.1.1
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.1
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.5.0
G.rodola Pyftpdlib 0.3.0
NA
CVE-2009-5013
Memory leak in the on_dtp_close function in ftpserver.py in pyftpdlib prior to 0.5.2 allows remote authenticated users to cause a denial of service (memory consumption) by sending a QUIT command during a data transfer.
G.rodola Pyftpdlib 0.1.1
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.5.0
G.rodola Pyftpdlib 0.4.0
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.1
NA
CVE-2008-7263
ftpserver.py in pyftpdlib prior to 0.5.0 does not delay its response after receiving an invalid login attempt, which makes it easier for remote malicious users to obtain access via a brute-force attack.
G.rodola Pyftpdlib 0.1.1
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.1
NA
CVE-2008-7264
The ftp_QUIT function in ftpserver.py in pyftpdlib prior to 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command during a disallowed data-transfer attempt.
G.rodola Pyftpdlib
G.rodola Pyftpdlib 0.2.0
G.rodola Pyftpdlib 0.1
G.rodola Pyftpdlib 0.3.0
G.rodola Pyftpdlib 0.1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started