UBUNTU-CVE-2024-48208

pure-ftpd before 1.0.52 is vulnerable to Buffer Overflow. There is an out of bounds read in the domlsd function of the ls.c file...

PT-2024-8546 · Pure Ftpd +1 · Pure-Ftpd +1

Name of the Vulnerable Software and Affected Versions: Pure-FTPd versions prior to 1.0.52 Description: The issue is related to the domlsd function in the ls.c file of the Pure-FTPd FTP server, which is associated with an out of bounds read in memory. This can be exploited by a remote attacker to...

SUSE CVE-2020-9274

An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer vulnerability has been detected in the diraliases linked list. When the lookupaliasconst char alias or printaliasesvoid function is called, they fail to correctly detect the end of the linked list and try to access a non-existe...

SUSE CVE-2021-40524

In Pure-FTPd before 1.0.50, an incorrect maxfilesize quota mechanism in the server allows attackers to upload files of unbounded size, which may lead to denial of service or a server hang. This occurs because a certain greater-than-zero test does not anticipate an initial -1 value. Versions 1.0.2...

UBUNTU-CVE-2020-35359

Pure-FTPd 1.0.48 allows remote attackers to prevent legitimate server use by making enough connections to exceed the connection limit...

UBUNTU-CVE-2019-20176

In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c...