Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-9274 PoC — Pure-FTPd 缓冲区错误漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/network/cves/2020/CVE-2020-9274.yaml
Associated Vulnerability
Title:Pure-FTPd 缓冲区错误漏洞 (CVE-2020-9274)
Description:Pure-FTPd是一款FTP(文件传输协议)服务器。 Pure-FTPd 1.0.49版本中的diraliases.c文件的‘init_aliases’函数存在缓冲区错误漏洞。远程攻击者可通过发送特制请求利用该漏洞导致应用程序崩溃。
Description
Pure-FTPd versions ≤ 1.0.49 (>= ~0.96) contain a vulnerability in the init_aliases() function within diraliases.c when processing aliases. This leads to access of an uninitialized pointer, which can cause a denial of service (DoS) condition.
File Snapshot

 id: CVE-2020-9274

info:
  name: Pure-FTPd ≤ 1.0.49 - DoS via Uninitialized Pointer
  author: pussyc

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.