Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, a related issue to CVE-2010-3492.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2010-10-19 20:00
Updated : 2024-02-04 17:54
NVD link : CVE-2010-3494
Mitre link : CVE-2010-3494
CVE.ORG link : CVE-2010-3494
JSON object : View
Products Affected
g.rodola
- pyftpdlib
CWE
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')