Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2008-7263

ftpserver.py in pyftpdlib before 0.5.0 does not delay its response after receiving an invalid login attempt, which makes it easier for remote attackers to obtain access via a brute-force attack.

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

OWASP TOP 10:

Software From Fixed in
g.rodola / pyftpdlib 0.2.0 0.2.0.x
g.rodola / pyftpdlib 0.1 0.1.x
g.rodola / pyftpdlib 0.1.1 0.1.1.x
g.rodola / pyftpdlib - 0.4.0.x
g.rodola / pyftpdlib 0.3.0 0.3.0.x
pyftpdlib - 0.5.0