2 matches found
CVE-2007-6737
FTPServer.py in pyftpdlib before 0.2.0 does not increment the attemptedlogins count for a USER command that specifies an invalid username, which makes it easier for remote attackers to obtain access via a brute-force attack...
CVE-2007-6737
CVE-2007-6737 affects pyftpdlib’s FTP server (FTPServer.py) prior to 0.2.0. The root cause is that attempted_logins is not incremented for a USER command with an invalid username, making brute-force access more feasible. Exploitation details are not provided in the documents; remediation/fix deta...