CVE-2019-20176
HIGH NUCLEIPureftpd Pure-ftpd - Denial of Service
Title source: ruleDescription
In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c.
Nuclei Templates (1)
Pure-FTPd < 1.0.50 - DoS via Resource Exhaustion
HIGHVERIFIEDby pussycat0x
Shodan:
product:"pure-ftpd" version:"1.0.45" || cpe:"cpe:2.3:a:pureftpd:pure-ftpd"
Scores
CVSS v3
7.5
EPSS
0.1078
EPSS Percentile
93.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-400
Status
published
Products (3)
fedoraproject/fedora
30
fedoraproject/fedora
31
pureftpd/pure-ftpd
1.0.49
Published
Dec 31, 2019
Tracked Since
Feb 18, 2026