CVE-2019-20176
HIGH WAF: Medium
CVSS 7.5
Published: 2019-12-31
CWE-400
In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c.
WAF Coverage Analysis
Uncontrolled Resource Consumption
Medium WAF Coverage
OWASP: A05:2021 Security Misconfiguration
912xxx - DOS Protection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| pureftpd | pure-ftpd | 1.0.49 |
| fedoraproject | fedora | 30 |
| fedoraproject | fedora | 31 |
References
- github.com (Patch, Third Party Advisory)
- lists.fedoraproject.org
- lists.fedoraproject.org