Vulnerability Details CVE-2010-2072
Pyftpd 0.8.4 creates log files with predictable names in a temporary directory, which allows local users to cause a denial of service and obtain sensitive information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.5%
CVSS Severity
CVSS v2 Score 3.6
References
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=585773
- http://www.openwall.com/lists/oss-security/2010/06/13/1
- http://www.securityfocus.com/bid/40842
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59429
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=585773
- http://www.openwall.com/lists/oss-security/2010/06/13/1
- http://www.securityfocus.com/bid/40842
- https://exchange.xforce.ibmcloud.com/vulnerabilities/59429
Products affected by CVE-2010-2072
-
cpe:2.3:a:radovan_garabik:pyftpd:0.8.4