Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.2 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected value of None for the address, or an ECONNABORTED, EAGAIN, or EWOULDBLOCK error, a related issue to CVE-2010-3492.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2010-10-19 13:00
Updated : 2010-10-19 21:00
NVD link : CVE-2010-3494
Mitre link : CVE-2010-3494
JSON object : View
CWE
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
Products Affected
g.rodola
- pyftpdlib