CVE-2008-7264
published 2010-10-19CVE-2008-7264: The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and…
PriorityP415medium4CVSS 2.0
AVNACLAuSCNINAP
EPSS
1.38%
68.6th percentile
The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command during a disallowed data-transfer attempt.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | python-pyftpdlib | — | — |
| g.rodola | pyftpdlib | <= 0.4.0 | — |
| g.rodola | pyftpdlib | — | — |
| g.rodola | pyftpdlib | — | — |
| g.rodola | pyftpdlib | — | — |
| g.rodola | pyftpdlib | — | — |
| g.rodola | pyftpdlib | >= 0 < 0.5.0 | 0.5.0 |
CVSS provenance
nvdv2.04.0MEDIUMAV:N/AC:L/Au:S/C:N/I:N/A:P
vendor_debian4.0LOW
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Improper input validation in pyftpdlib
osv·2022-05-17
CVE-2008-7264 [MEDIUM] Improper input validation in pyftpdlib
Improper input validation in pyftpdlib
The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command during a disallowed data-transfer attempt.
GHSA
Improper input validation in pyftpdlib
ghsa·2022-05-17
CVE-2008-7264 [MEDIUM] CWE-20 Improper input validation in pyftpdlib
Improper input validation in pyftpdlib
The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command during a disallowed data-transfer attempt.
OSV
CVE-2008-7264: The ftp_QUIT function in ftpserver
osv·2010-10-19
CVE-2008-7264 CVE-2008-7264: The ftp_QUIT function in ftpserver
The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command during a disallowed data-transfer attempt.
Debian
CVE-2008-7264: python-pyftpdlib - The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote au...
vendor_debian·2008·CVSS 4.0
CVE-2008-7264 [MEDIUM] CVE-2008-7264: python-pyftpdlib - The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote au...
The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command during a disallowed data-transfer attempt.
Scope: local
bookworm: resolved
bullseye: resolved
forky: resolved
sid: resolved
trixie: resolved
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://code.google.com/p/pyftpdlib/issues/detail?id=71http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORYhttp://code.google.com/p/pyftpdlib/source/detail?r=344http://code.google.com/p/pyftpdlib/source/diff?spec=svn344&r=344&format=side&path=/trunk/pyftpdlib/ftpserver.pyhttp://code.google.com/p/pyftpdlib/issues/detail?id=71http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORYhttp://code.google.com/p/pyftpdlib/source/detail?r=344http://code.google.com/p/pyftpdlib/source/diff?spec=svn344&r=344&format=side&path=/trunk/pyftpdlib/ftpserver.py
2010-10-19
Published