Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2009-5012HistoryOct 19, 2010 - 8:00 p.m.
CVE-2009-5012
2010-10-1920:00:00
Debian Security Bug Tracker
security-tracker.debian.org
8
0.001 Low
EPSS
Percentile
49.9%
ftpserver.py in pyftpdlib before 0.5.2 does not require the l permission for the MLST command, which allows remote authenticated users to bypass intended access restrictions and list the root directory via an FTP session.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | python-pyftpdlib | < 0.5.2-1 | python-pyftpdlib_0.5.2-1_all.deb |
| Debian | 11 | all | python-pyftpdlib | < 0.5.2-1 | python-pyftpdlib_0.5.2-1_all.deb |
| Debian | 10 | all | python-pyftpdlib | < 0.5.2-1 | python-pyftpdlib_0.5.2-1_all.deb |
| Debian | 999 | all | python-pyftpdlib | < 0.5.2-1 | python-pyftpdlib_0.5.2-1_all.deb |
| Debian | 13 | all | python-pyftpdlib | < 0.5.2-1 | python-pyftpdlib_0.5.2-1_all.deb |
Related
cvelist
cvelist
CVE-2009-5012
2022-10-03 16:24:01
osv
osv
PYSEC-2010-9
2010-10-19 20:00:00
Improper Access Control in pyftpdlib
2022-05-02 04:00:26
cve
cve
CVE-2009-5012
2010-10-19 20:00:00
prion
prion
Session fixation
2010-10-19 20:00:00
github
github
Improper Access Control in pyftpdlib
2022-05-02 04:00:26
nessus
nessus
Fedora 12 : pyftpdlib-0.5.2-1.fc12 (2010-16731)
2010-11-05 00:00:00
openvas
openvas
Fedora Update for pyftpdlib FEDORA-2010-16731
2010-11-16 00:00:00
pyftpdlib FTP Server Multiple Vulnerabilities
2010-10-28 00:00:00
Fedora Update for pyftpdlib FEDORA-2010-16731
2010-11-16 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: pyftpdlib-0.5.2-1.fc12
2010-11-04 23:28:10