Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A flaw was found in Python, specifically in the FTP (File Transfer Protocol) client library in PASV (passive) mode. The issue is how the FTP client trusts the host from the PASV response by default. This flaw allows an attacker to set up a malicious FTP server that can trick FTP clients into connecting back to a given IP address and port. This vulnerability could lead to FTP client scanning ports, which otherwise would not have been possible.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Python 代码问题漏洞
Vulnerability Description
Python是Python基金会的一套开源的、面向对象的程序设计语言。该语言具有可扩展、支持模块和包、支持多种平台等特点。Proto是开源的一个用于创建对象的可扩展程序代码模板。 python 存在代码问题漏洞,该漏洞源于在 Python2.7 中发现了一个缺陷,特别是在 PASV(被动)模式下使用 FTP(文件传输协议)客户端库时。缺陷在于默认情况下 FTP 客户端如何信任来自 PASV 响应的主机。攻击者可以利用此漏洞设置恶意 FTP 服务器,该服务器可以欺骗 FTP 客户端连接回给定的 IP 地址和
CVSS Information
N/A
Vulnerability Type
N/A