G.rodola : Security Vulnerabilities, CVEs, CVSS score >= 7
ftpserver.py in pyftpdlib before 0.5.0 does not delay its response after receiving an invalid login attempt, which makes it easier for remote attackers to obtain access via a brute-force attack.
Max CVSS
7.5
EPSS Score
0.33%
Published
2010-10-19
Updated
2010-10-20
FTPServer.py in pyftpdlib before 0.2.0 does not increment the attempted_logins count for a USER command that specifies an invalid username, which makes it easier for remote attackers to obtain access via a brute-force attack.
Max CVSS
7.5
EPSS Score
0.33%
Published
2010-10-19
Updated
2010-10-20
2 vulnerabilities found