Vulnerability Description
The ftp_PORT function in FTPServer.py in pyftpdlib before 0.2.0 does not prevent TCP connections to privileged ports if the destination IP address matches the source IP address of the connection from the FTP client, which might allow remote authenticated users to conduct FTP bounce attacks via crafted FTP data, as demonstrated by an FTP bounce attack against a NAT server, a related issue to CVE-1999-0017.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| G.Rodola | Pyftpdlib | <= 0.1.1 |
Related Weaknesses (CWE)
References
- http://code.google.com/p/pyftpdlib/issues/detail?id=11
- http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY
- http://code.google.com/p/pyftpdlib/source/detail?r=32
- http://code.google.com/p/pyftpdlib/source/diff?spec=svn32&r=32&format=side&path=
- http://code.google.com/p/pyftpdlib/issues/detail?id=11
- http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY
- http://code.google.com/p/pyftpdlib/source/detail?r=32
- http://code.google.com/p/pyftpdlib/source/diff?spec=svn32&r=32&format=side&path=
FAQ
What is CVE-2007-6741?
CVE-2007-6741 is a vulnerability with a CVSS score of 6.5 (MEDIUM). The ftp_PORT function in FTPServer.py in pyftpdlib before 0.2.0 does not prevent TCP connections to privileged ports if the destination IP address matches the source IP address of the connection from ...
How severe is CVE-2007-6741?
CVE-2007-6741 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-6741?
Check the references section above for vendor advisories and patch information. Affected products include: G.Rodola Pyftpdlib.