Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-20176 PoC — Pure-FTPd 资源管理错误漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/network/cves/2019/CVE-2019-20176.yaml
Associated Vulnerability
Title:Pure-FTPd 资源管理错误漏洞 (CVE-2019-20176)
Description:Pure-FTPd是一款FTP(文件传输协议)服务器。 Pure-FTPd 1.0.49版本中的ls.c文件的‘listdir’函数存在安全漏洞。攻击者可利用该漏洞造成拒绝服务(栈耗尽)。
Description
Pure-FTPd versions prior to 1.0.50 are vulnerable to resource exhaustion leading to denial of service. The vulnerability occurs in the listdir() function when processing crafted LIST commands, causing stack exhaustion that can crash the FTP server.
File Snapshot

 id: CVE-2019-20176

info:
  name: Pure-FTPd < 1.0.50 - DoS via Resource Exhaustion
  author: pussyca

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.