Pure-ftpd Security Vulnerabilities and Issues — Pure-ftpd CVE List

Lucene search

PureftpdPure-ftpd

5 matches found

CVE•added 2020/02/26 4:15 p.m.•104 views

CVE-2020-9274

An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer vulnerability has been detected in the diraliases linked list. When the *lookup_alias(const char alias) or print_aliases(void) function is called, they fail to correctly detect the end of the linked list and try to access a non-e...

7.5CVSS7.2AI score0.01103EPSS

CVE•added 2020/12/26 5:15 a.m.•88 views

CVE-2020-35359

Pure-FTPd 1.0.48 allows remote attackers to prevent legitimate server use by making enough connections to exceed the connection limit.

7.5CVSS7.5AI score0.0046EPSS

CVE•added 2020/02/24 4:15 p.m.•81 views

CVE-2020-9365

An issue was discovered in Pure-FTPd 1.0.49. An out-of-bounds (OOB) read has been detected in the pure_strcmp function in utils.c.

7.5CVSS7.2AI score0.01532EPSS

CVE•added 2021/09/05 7:15 p.m.•65 views

CVE-2021-40524

In Pure-FTPd before 1.0.50, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size, which may lead to denial of service or a server hang. This occurs because a certain greater-than-zero test does not anticipate an initial -1 value. (Versions 1.0.2...

7.5CVSS7.3AI score0.00571EPSS

CVE•added 2019/12/31 3:15 p.m.•58 views

CVE-2019-20176

In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c.

7.5CVSS7.3AI score0.00445EPSS