MidnightBSD

Advisories for pureftpd

CVE-2004-0656 MEDIUM

The accept_client function in PureFTPd 1.0.18 and earlier allows remote attackers to cause a denial of service by exceeding the maximum number of connections.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
pureftpd pureftpd 1.0.12
pureftpd pureftpd 1.0.2
pureftpd pureftpd 1.0.16b
pureftpd pureftpd 1.0.16c
pureftpd pureftpd 1.0.3
pureftpd pureftpd 1.0.11
pureftpd pureftpd 1.0.15
pureftpd pureftpd 1.0.16
pureftpd pureftpd 1.0.1
pureftpd pureftpd 1.0.17a
pureftpd pureftpd 0.96
pureftpd pureftpd 1.0
pureftpd pureftpd 1.0.16a
pureftpd pureftpd 1.0.13a
pureftpd pureftpd 1.0.18
pureftpd pureftpd 1.0.5
pureftpd pureftpd 1.0.14
pureftpd pureftpd 1.0.4
CVE-2011-0418 MEDIUM

The glob implementation in Pure-FTPd before 1.0.32, and in libc in NetBSD 5.1, does not properly expand expressions containing curly brackets, which allows remote authenticated users to cause a denial of service (memory consumption) via a crafted FTP STAT command.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
pureftpd pure-ftpd 0.98.4
pureftpd pure-ftpd 0.95-pre2
pureftpd pure-ftpd 0.99pre1
pureftpd pure-ftpd 0.97.6
pureftpd pure-ftpd 0.99pre2
pureftpd pure-ftpd 0.95.2
pureftpd pure-ftpd 1.0.26
pureftpd pure-ftpd 0.95-pre4
pureftpd pure-ftpd 1.0.6
pureftpd pure-ftpd 1.0.14
pureftpd pure-ftpd 0.95
pureftpd pure-ftpd 0.99.2
pureftpd pure-ftpd 0.97.1
pureftpd pure-ftpd 0.98-final
pureftpd pure-ftpd 1.0.8
pureftpd pure-ftpd 1.0.16c
pureftpd pure-ftpd 0.97pre5
pureftpd pure-ftpd 0.98.2a
pureftpd pure-ftpd 1.0.11
pureftpd pure-ftpd 1.0.19
pureftpd pure-ftpd 0.97pre3
pureftpd pure-ftpd 1.0.1
pureftpd pure-ftpd 1.0.18
pureftpd pure-ftpd 1.0.21
pureftpd pure-ftpd *
pureftpd pure-ftpd 0.97pre1
pureftpd pure-ftpd 0.97.7pre3
pureftpd pure-ftpd 0.99
pureftpd pure-ftpd 0.97pre2
pureftpd pure-ftpd 0.98.2
pureftpd pure-ftpd 1.0.30
pureftpd pure-ftpd 0.95-pre1
pureftpd pure-ftpd 0.95-pre3
pureftpd pure-ftpd 1.0.25
pureftpd pure-ftpd 1.0.27
pureftpd pure-ftpd 0.99.9
pureftpd pure-ftpd 0.99.2a
pureftpd pure-ftpd 0.97.7
pureftpd pure-ftpd 0.98pre2
pureftpd pure-ftpd 0.97.2
pureftpd pure-ftpd 0.99.4
pureftpd pure-ftpd 0.97-final
pureftpd pure-ftpd 0.99b
pureftpd pure-ftpd 0.92
pureftpd pure-ftpd 0.99.1a
pureftpd pure-ftpd 1.0.29
pureftpd pure-ftpd 0.96pre1
pureftpd pure-ftpd 0.97.4
pureftpd pure-ftpd 1.0.4
pureftpd pure-ftpd 0.95.1
pureftpd pure-ftpd 0.99a
pureftpd pure-ftpd 0.90
pureftpd pure-ftpd 1.0.7
pureftpd pure-ftpd 0.98.7
pureftpd pure-ftpd 0.97.7pre1
pureftpd pure-ftpd 0.98.1
pureftpd pure-ftpd 1.0.12
pureftpd pure-ftpd 1.0.28
pureftpd pure-ftpd 0.99.1
pureftpd pure-ftpd 1.0.3
pureftpd pure-ftpd 0.97.3
pureftpd pure-ftpd 0.97.7pre2
pureftpd pure-ftpd 0.91
pureftpd pure-ftpd 0.98.5
pureftpd pure-ftpd 1.0.17
pureftpd pure-ftpd 1.0.22
pureftpd pure-ftpd 1.0.13a
pureftpd pure-ftpd 0.96
pureftpd pure-ftpd 0.98.6
pureftpd pure-ftpd 1.0.9
pureftpd pure-ftpd 0.98.3
pureftpd pure-ftpd 1.0.24
pureftpd pure-ftpd 1.0.17a
pureftpd pure-ftpd 0.98pre1
pureftpd pure-ftpd 0.99.1b
pureftpd pure-ftpd 0.97.5
pureftpd pure-ftpd 0.94
pureftpd pure-ftpd 1.0.20
pureftpd pure-ftpd 0.99.3
pureftpd pure-ftpd 1.0.16a
netbsd netbsd 5.1
pureftpd pure-ftpd 0.97pre4
pureftpd pure-ftpd 1.0.5
pureftpd pure-ftpd 1.0.16b
pureftpd pure-ftpd 1.0.15
pureftpd pure-ftpd 1.0.0
pureftpd pure-ftpd 1.0.2
pureftpd pure-ftpd 0.93
pureftpd pure-ftpd 0.96.1
pureftpd pure-ftpd 1.0.10
CVE-2011-0988 MEDIUM

pure-ftpd 1.0.22, as used in SUSE Linux Enterprise Server 10 SP3 and SP4, and Enterprise Desktop 10 SP3 and SP4, when running OES Netware extensions, creates a world-writeable directory, which allows local users to overwrite arbitrary files and gain privileges via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
novell suse_linux 11
pureftpd pure-ftpd 1.0.22
novell suse_linux 10
CVE-2011-1575 MEDIUM

The STARTTLS implementation in ftp_parser.c in Pure-FTPd before 1.0.30 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted FTP sessions by sending a cleartext command that is processed after TLS is in place, related to a "plaintext command injection" attack, a similar issue to CVE-2011-0411.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
pureftpd pure-ftpd 0.98.4
pureftpd pure-ftpd 0.95-pre2
pureftpd pure-ftpd 0.99pre1
pureftpd pure-ftpd 0.97.6
pureftpd pure-ftpd 0.99pre2
pureftpd pure-ftpd 0.95.2
pureftpd pure-ftpd 1.0.26
pureftpd pure-ftpd 0.95-pre4
pureftpd pure-ftpd 1.0.6
pureftpd pure-ftpd 1.0.14
pureftpd pure-ftpd 0.95
pureftpd pure-ftpd 0.99.2
pureftpd pure-ftpd 0.97.1
pureftpd pure-ftpd 0.98-final
pureftpd pure-ftpd 1.0.8
pureftpd pure-ftpd 1.0.16c
pureftpd pure-ftpd 0.97pre5
pureftpd pure-ftpd 0.98.2a
pureftpd pure-ftpd 1.0.11
pureftpd pure-ftpd 1.0.19
pureftpd pure-ftpd 0.97pre3
pureftpd pure-ftpd 1.0.1
pureftpd pure-ftpd 1.0.18
pureftpd pure-ftpd 1.0.21
pureftpd pure-ftpd *
pureftpd pure-ftpd 0.97pre1
pureftpd pure-ftpd 0.97.7pre3
pureftpd pure-ftpd 0.99
pureftpd pure-ftpd 0.97pre2
pureftpd pure-ftpd 0.98.2
pureftpd pure-ftpd 0.95-pre1
pureftpd pure-ftpd 0.95-pre3
pureftpd pure-ftpd 1.0.25
pureftpd pure-ftpd 1.0.27
pureftpd pure-ftpd 0.99.9
pureftpd pure-ftpd 0.99.2a
pureftpd pure-ftpd 0.97.7
pureftpd pure-ftpd 0.98pre2
pureftpd pure-ftpd 0.97.2
pureftpd pure-ftpd 0.99.4
pureftpd pure-ftpd 0.97-final
pureftpd pure-ftpd 0.99b
pureftpd pure-ftpd 0.92
pureftpd pure-ftpd 0.99.1a
pureftpd pure-ftpd 0.96pre1
pureftpd pure-ftpd 0.97.4
pureftpd pure-ftpd 1.0.4
pureftpd pure-ftpd 0.95.1
pureftpd pure-ftpd 0.99a
pureftpd pure-ftpd 0.90
pureftpd pure-ftpd 1.0.7
pureftpd pure-ftpd 0.98.7
pureftpd pure-ftpd 0.97.7pre1
pureftpd pure-ftpd 0.98.1
pureftpd pure-ftpd 1.0.12
pureftpd pure-ftpd 1.0.28
pureftpd pure-ftpd 0.99.1
pureftpd pure-ftpd 1.0.3
pureftpd pure-ftpd 0.97.3
pureftpd pure-ftpd 0.97.7pre2
pureftpd pure-ftpd 0.91
pureftpd pure-ftpd 0.98.5
pureftpd pure-ftpd 1.0.17
pureftpd pure-ftpd 1.0.22
pureftpd pure-ftpd 1.0.13a
pureftpd pure-ftpd 0.96
pureftpd pure-ftpd 0.98.6
pureftpd pure-ftpd 1.0.9
pureftpd pure-ftpd 0.98.3
pureftpd pure-ftpd 1.0.24
pureftpd pure-ftpd 1.0.17a
pureftpd pure-ftpd 0.98pre1
pureftpd pure-ftpd 0.99.1b
pureftpd pure-ftpd 0.97.5
pureftpd pure-ftpd 0.94
pureftpd pure-ftpd 1.0.20
pureftpd pure-ftpd 0.99.3
pureftpd pure-ftpd 1.0.16a
pureftpd pure-ftpd 0.97pre4
pureftpd pure-ftpd 1.0.5
pureftpd pure-ftpd 1.0.16b
pureftpd pure-ftpd 1.0.15
pureftpd pure-ftpd 1.0.0
pureftpd pure-ftpd 1.0.2
pureftpd pure-ftpd 0.93
pureftpd pure-ftpd 0.96.1
pureftpd pure-ftpd 1.0.10
CVE-2011-3171 LOW

Directory traversal vulnerability in pure-FTPd 1.0.22 and possibly other versions, when running on SUSE Linux Enterprise Server and possibly other operating systems, when the Netware OES remote server feature is enabled, allows local users to overwrite arbitrary files via unknown vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-22,

Products Affected

Vendor Product Version
pureftpd pure-ftpd 0.98.4
pureftpd pure-ftpd 0.97.6
pureftpd pure-ftpd 0.95.2
pureftpd pure-ftpd 0.97
pureftpd pure-ftpd 1.0.6
pureftpd pure-ftpd 1.0.14
pureftpd pure-ftpd 0.95
pureftpd pure-ftpd 0.99.2
pureftpd pure-ftpd 0.97.1
pureftpd pure-ftpd 1.0.8
pureftpd pure-ftpd 1.0.16
pureftpd pure-ftpd 1.0.11
pureftpd pure-ftpd 1.0.19
pureftpd pure-ftpd 1.0.1
pureftpd pure-ftpd 1.0.18
pureftpd pure-ftpd 1.0.21
pureftpd pure-ftpd *
pureftpd pure-ftpd 0.99
pureftpd pure-ftpd 0.98.2
pureftpd pure-ftpd 0.99.9
pureftpd pure-ftpd 0.97.7
pureftpd pure-ftpd 0.97.2
pureftpd pure-ftpd 0.99.4
pureftpd pure-ftpd 0.97-final
pureftpd pure-ftpd 0.92
pureftpd pure-ftpd 0.97.4
pureftpd pure-ftpd 1.0.4
pureftpd pure-ftpd 0.95.1
pureftpd pure-ftpd 0.90
pureftpd pure-ftpd 1.0.7
pureftpd pure-ftpd 0.98.7
pureftpd pure-ftpd 0.98.1
pureftpd pure-ftpd 1.0.12
pureftpd pure-ftpd 0.99.1
pureftpd pure-ftpd 1.0.3
pureftpd pure-ftpd 0.97.3
pureftpd pure-ftpd 0.91
pureftpd pure-ftpd 1.0.13
pureftpd pure-ftpd 0.98.5
pureftpd pure-ftpd 1.0.17
pureftpd pure-ftpd 0.96
pureftpd pure-ftpd 0.98.6
pureftpd pure-ftpd 1.0.9
pureftpd pure-ftpd 0.98.3
pureftpd pure-ftpd 0.97.5
pureftpd pure-ftpd 0.94
pureftpd pure-ftpd 1.0.20
pureftpd pure-ftpd 0.99.3
pureftpd pure-ftpd 1.0.5
pureftpd pure-ftpd 1.0.15
pureftpd pure-ftpd 1.0.0
pureftpd pure-ftpd 1.0.2
pureftpd pure-ftpd 0.98
pureftpd pure-ftpd 0.93
pureftpd pure-ftpd 0.96.1
pureftpd pure-ftpd 1.0.10
CVE-2017-12170 HIGH

Downstream version 1.0.46-1 of pure-ftpd as shipped in Fedora was vulnerable to packaging error due to which the original configuration was ignored after update and service started running with default configuration. This has security implications because of overriding security-related configuration. This issue doesn't affect upstream version of pure-ftpd.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 26
pureftpd pure-ftpd 1.0.46-1
fedoraproject fedora 27
CVE-2019-20176 MEDIUM

In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
fedoraproject fedora 31
fedoraproject fedora 30
pureftpd pure-ftpd 1.0.49
CVE-2020-35359 MEDIUM

Pure-FTPd 1.0.48 allows remote attackers to prevent legitimate server use by making enough connections to exceed the connection limit.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
pureftpd pure-ftpd 1.0.48
CVE-2020-9274 MEDIUM

An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer vulnerability has been detected in the diraliases linked list. When the *lookup_alias(const char alias) or print_aliases(void) function is called, they fail to correctly detect the end of the linked list and try to access a non-existent list member. This is related to init_aliases in diraliases.c.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-824,

Products Affected

Vendor Product Version
fedoraproject fedora 31
debian debian_linux 8.0
fedoraproject extra_packages_for_enterprise_linux 8.0
fedoraproject fedora 30
pureftpd pure-ftpd *
fedoraproject fedora 32
canonical ubuntu_linux 16.04
fedoraproject extra_packages_for_enterprise_linux 7.0
CVE-2020-9365 MEDIUM

An issue was discovered in Pure-FTPd 1.0.49. An out-of-bounds (OOB) read has been detected in the pure_strcmp function in utils.c.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
fedoraproject fedora 31
fedoraproject fedora 30
fedoraproject fedora 32
pureftpd pure-ftpd 1.0.49
CVE-2021-40524 MEDIUM

In Pure-FTPd before 1.0.50, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbounded size, which may lead to denial of service or a server hang. This occurs because a certain greater-than-zero test does not anticipate an initial -1 value. (Versions 1.0.23 through 1.0.49 are affected.)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-434,

Products Affected

Vendor Product Version
pureftpd pure-ftpd *
CVE-2024-48208

pure-ftpd before 1.0.52 is vulnerable to Buffer Overflow. There is an out of bounds read in the domlsd() function of the ls.c file.

Products Affected

Vendor Product Version
pureftpd pure-ftpd *