CVE-2008-7264 — Improper Input Validation in Pyftpdlib
Severity
4.0MEDIUMNVD
EPSS
0.8%
top 25.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedOct 19
Latest updateMay 17
Description
The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command during a disallowed data-transfer attempt.
CVSS vector
AV:N/AC:L/C:N/I:N/A:PExploitability: 8.0 | Impact: 2.9
Affected Packages3 packages
Patches
🔴Vulnerability Details
3📋Vendor Advisories
1Debian▶
CVE-2008-7264: python-pyftpdlib - The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote au...↗2008