Pure-FTPd version 1.0.21 crash proof of concept exploit that leverages a NULL pointer dereference.
c2280992211c9ea41ac2e2ddf61f4ee7e7455a52f000ddfb5f9302a7a81ccbc0
Pure-FTPd version 1.0.48 suffers from a denial of service vulnerability.
6f8f9a41e4fbb1c854299643cac0a0ea3ef97311952ba1c42dac8cb7b70e3b84
Ubuntu Security Notice 4515-1 - Antonio Norales discovered that Pure-FTPd incorrectly handled directory aliases. An attacker could possibly use this issue to access sensitive information.
1d2059f1accd9df4de8885389aa8e43c55860bc2ce9bf0bcc73935bcdbc2a6b6
Gentoo Linux Security Advisory 202003-54 - Multiple vulnerabilities have been found in Pure-FTPd, the worst of which could allow remote attackers to cause a Denial of Service condition. Versions less than 1.0.49-r2 are affected.
03a17ed08e74c6de611d02ad78c3b4782dc5362e5813d972a63dd5d1bfb2dff6
This Metasploit module exploits the code injection flaw known as shellshock which leverages specially crafted environment variables in Bash. This exploit specifically targets Pure-FTPd when configured to use an external program for authentication.
d1353f15ae7ed9aea8cd6b1644f5fbeada6291338684996bc3b3a388a0f3b2ec
Secunia Security Advisory - Gentoo has issued an update for pure-ftpd. This fixes a vulnerability, which can be exploited by malicious people to manipulate certain data.
b0ebbfb2368006d13480954941a313e094efd57b1fa0af30db0b1760d8a39504
Gentoo Linux Security Advisory 201110-25 - Multiple vulnerabilities were found in Pure-FTPd allowing attackers to inject FTP commands or cause a denial of service. Versions less than 1.0.32 are affected.
f89bb8f9f3e5f2d7b6836468554ba6a748075ab23fe3df8a94a0041b2fd882a9
Secunia Security Advisory - SUSE has issued an update for pure-ftpd. This fixes a vulnerability, which can be exploited by malicious, local users and malicious people to manipulate certain data.
cef00ed956fe609457e037c01ddd6d61af27ce11d8f0dcd61495b6a0ee6345bd
Mandriva Linux Security Advisory 2011-094 - A denial-of-service attack related to glob brace expansion was discovered and fixed in pure-ftpd.
18700e0c74f1cc13ea52699ca83aaf6809a6ec0df7836b255d7eb1aa33836167
Secunia Security Advisory - SUSE has issued an update for pure-ftpd. This fixes a vulnerability, which can be exploited by malicious people to manipulate certain data.
55701cac7589a68728ed5007ba7a904bb29a7860424b326b70d19f4f6b480a4c
Secunia Security Advisory - SUSE has acknowledged a vulnerability in the pure-ftpd package for SUSE Linux Enterprise Server, which can be exploited by malicious, local users to gain escalated privileges.
a4190e8e805f0c817f46542f4f42aff5fcb61412698da4e27fd772e53742ec8c
Secunia Security Advisory - Fedora has issued an update for pure-ftpd. This fixes a vulnerability, which can be exploited by malicious people to manipulate certain data.
13e9b703598b3ac7b7a9f55f5b326be3b7d52241ecbebf35228ce84b8838908e
Secunia Security Advisory - A vulnerability has been reported in Pure-FTPd, which can be exploited by malicious people to manipulate certain data.
1bbe04217266d95ae8c3dfba1c6fda391867edeceaa2ed5891f4965d65921c93
Mandriva Linux Security Advisory 2011-046 - A security flaw was discovered in pure-ftpd which allows plaintext command injection over TLS.
c79c0998d50cb9fdb22adc00fc447d479980cc0727ac9682e23c6d0d74fb19d2
Secunia Security Advisory - Pure-FTPd versions 1.0.x suffer from a vulnerability that allow for a denial of service.
2e6b6e5a4f4eb9330463561fb1ee0d9eecc4a10f2946250c0fd96bad08e2c182