Lucene search
HistoryOct 03, 2022 - 4:13 p.m.
CVE-2008-7263
cve-2008-7263
pyftpdlib
ftpserver.py
brute-force attack
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.5 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.5%
ftpserver.py in pyftpdlib before 0.5.0 does not delay its response after receiving an invalid login attempt, which makes it easier for remote attackers to obtain access via a brute-force attack.
Affected configurations
Node
g.rodolapyftpdlibRange≤0.4.0
ORg.rodolapyftpdlibMatch0.1
ORg.rodolapyftpdlibMatch0.1.1
ORg.rodolapyftpdlibMatch0.2.0
ORg.rodolapyftpdlibMatch0.3.0
Related
cvelist
cvelist
CVE-2008-7263
2022-10-03 16:13:53
debiancve
debiancve
CVE-2008-7263
2022-10-03 16:13:53
prion
prion
Design/Logic Flaw
2010-10-19 20:00:00
nvd
nvd
CVE-2008-7263
2010-10-19 20:00:02
github
github
Improper Authentication in pyftpdlib
2022-05-17 05:47:38
osv
osv
Improper Authentication in pyftpdlib
2022-05-17 05:47:38
PYSEC-2010-5
2010-10-19 20:00:00
openvas
openvas
pyftpdlib FTP Server Multiple Vulnerabilities
2010-10-28 00:00:00
pyftpdlib FTP Server Multiple Vulnerabilities
2010-10-28 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
6.5 Medium
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
79.5%
Related for CVE-2008-7263