CVE-2009-5011
pyftpdlib < 0.5.2 - Denial of Service via FTP Connection Race Condition
Title source: llmDescription
Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the getpeername function having an ENOTCONN error, a different vulnerability than CVE-2010-3494.
References (4)
Core 4
Core References
Issue Tracking x_refsource_confirm
http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY
Issue Tracking x_refsource_confirm
http://code.google.com/p/pyftpdlib/source/detail?r=543
Issue Tracking x_refsource_confirm
http://code.google.com/p/pyftpdlib/source/diff?spec=svn543&r=543&format=side&path=/trunk/pyftpdlib/ftpserver.py
Issue Tracking x_refsource_confirm
http://code.google.com/p/pyftpdlib/issues/detail?id=100
Scores
EPSS
0.0093
EPSS Percentile
56.2%
Details
CWE
CWE-362
Status
published
Products (8)
g.rodola/pyftpdlib
0.1
g.rodola/pyftpdlib
0.1.1
g.rodola/pyftpdlib
0.2.0
g.rodola/pyftpdlib
0.3.0
g.rodola/pyftpdlib
0.4.0
g.rodola/pyftpdlib
0.5.0
g.rodola/pyftpdlib
< 0.5.1
pypi/pyftpdlib
0 - 0.5.2PyPI
Published
Oct 19, 2010
Tracked Since
Feb 18, 2026