Lucene search

K
cvelistMitreCVELIST:CVE-2009-5012
HistoryOct 19, 2010 - 7:00 p.m.

CVE-2009-5012

2010-10-1919:00:00
mitre
www.cve.org
7
pyftpdlib
ftp
access restrictions

AI Score

6.1

Confidence

Low

EPSS

0.002

Percentile

57.0%

ftpserver.py in pyftpdlib before 0.5.2 does not require the l permission for the MLST command, which allows remote authenticated users to bypass intended access restrictions and list the root directory via an FTP session.

AI Score

6.1

Confidence

Low

EPSS

0.002

Percentile

57.0%