CVE-2007-6737

FTPServer.py in pyftpdlib before 0.2.0 does not increment the attempted_logins count for a USER command that specifies an invalid username, which makes it easier for remote attackers to obtain access via a brute-force attack.
Configurations

Configuration 1

cpe:2.3:a:g.rodola:pyftpdlib:0.1:*:*:*:*:*:*:*
cpe:2.3:a:g.rodola:pyftpdlib:*:*:*:*:*:*:*:*

Information

Published : 2010-10-19 08:00

Updated : 2010-10-20 04:00


NVD link : CVE-2007-6737

Mitre link : CVE-2007-6737

Products Affected
No products.
CWE