CVE-2004-0656

NUCLEI

PureFTPd 1.0.18 - Denial of Service via Excessive Connections

Title source: llm

Exploitation Summary

CVE-2004-0656 has a Nuclei detection template available — see the Nuclei card below for the Shodan/FOFA recon queries.

Description

The accept_client function in PureFTPd 1.0.18 and earlier allows remote attackers to cause a denial of service by exceeding the maximum number of connections.

Nuclei Templates (1)

Pure-FTPd ≤ 1.0.18 - DoS via Connection Limit Exhaustion

MEDIUMVERIFIEDby pussycat0x

Shodan: product:"Pure-FTPd" version:"1.0.14"

References (3)

Core 3

Core References

Various Sources x_refsource_confirm

http://www.pureftpd.org/

Patch, Vendor Advisory vendor-advisory x_refsource_gentoo

http://www.gentoo.org/security/en/glsa/glsa-200407-04.xml

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/16611

Scores

EPSS 0.0023

EPSS Percentile 46.0%

Details

Status published

Products (18)

pureftpd/pureftpd 0.96

pureftpd/pureftpd 1.0

pureftpd/pureftpd 1.0.1

pureftpd/pureftpd 1.0.2

pureftpd/pureftpd 1.0.3

pureftpd/pureftpd 1.0.4

pureftpd/pureftpd 1.0.5

pureftpd/pureftpd 1.0.11

pureftpd/pureftpd 1.0.12

pureftpd/pureftpd 1.0.13a

... and 8 more

Published Aug 06, 2004

Tracked Since Feb 18, 2026