Access of Uninitialized Pointer in Pure-FTPd

#VU25651 Access of Uninitialized Pointer in Pure-FTPd

Published: 2020-02-27 | Updated: 2022-06-15

Vulnerability identifier: #VU25651

Vulnerability risk: Low

CVSSv3.1: 5.7 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2020-9274

CWE-ID: CWE-824

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Pure-FTPd
Server applications / File servers (FTP/HTTP)

Vendor: PureFTPd.org

Description

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to access to an uninitialized pointer in init_aliases() function in diraliases.c when processing liked. A remote user with ability to create aliases can crash the server.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Pure-FTPd: 0.96 - 1.0.49

External links
http://github.com/jedisct1/pure-ftpd/commit/8d0d42542e2cb7a56d645fbe4d0ef436e38bcefa
http://www.pureftpd.org/project/pure-ftpd/news/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Access of Uninitialized Pointer in pure-ftpd (Alpine package)

Gentoo update for Pure-FTPd

Multiple vulnerabilities in Pure-FTPd