Lucene search
HistoryOct 03, 2022 - 4:13 p.m.
CVE-2008-7264
cve-2008-7264
ftp_quit
pyftpdlib
denial of service
file descriptor exhaustion
daemon outage
nvd
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
6.4 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.8%
The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command during a disallowed data-transfer attempt.
Affected configurations
Node
g.rodolapyftpdlibRange≤0.4.0
ORg.rodolapyftpdlibMatch0.1
ORg.rodolapyftpdlibMatch0.1.1
ORg.rodolapyftpdlibMatch0.2.0
ORg.rodolapyftpdlibMatch0.3.0
Related
osv
osv
PYSEC-2010-6
2010-10-19 20:00:00
Improper input validation in pyftpdlib
2022-05-17 05:47:38
github
github
Improper input validation in pyftpdlib
2022-05-17 05:47:38
cvelist
cvelist
CVE-2008-7264
2022-10-03 16:13:54
prion
prion
Command injection
2010-10-19 20:00:00
nvd
nvd
CVE-2008-7264
2010-10-19 20:00:02
debiancve
debiancve
CVE-2008-7264
2022-10-03 16:13:54
openvas
openvas
pyftpdlib FTP Server Multiple Vulnerabilities
2010-10-28 00:00:00
pyftpdlib FTP Server Multiple Vulnerabilities
2010-10-28 00:00:00
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
6.4 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
70.8%
Related for CVE-2008-7264