Vulnerability Name:

CVE-2020-9274 (CCN-176980)

Assigned:2020-02-18
Published:2020-02-18
Updated:2022-10-07
Summary:An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer vulnerability has been detected in the diraliases linked list. When the *lookup_alias(const char alias) or print_aliases(void) function is called, they fail to correctly detect the end of the linked list and try to access a non-existent list member. This is related to init_aliases in diraliases.c.
CVSS v3 Severity:7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-824
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2020-9274

Source: XF
Type: UNKNOWN
pureftpd-cve20209274-dos(176980)

Source: CCN
Type: Pure-FTPd GIT Repository
diraliases: always set the tail of the list to NULL

Source: MISC
Type: Patch, Third Party Advisory
https://github.com/jedisct1/pure-ftpd/commit/8d0d42542e2cb7a56d645fbe4d0ef436e38bcefa

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20200228 [SECURITY] [DLA 2123-1] pure-ftpd security update

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2020-5ac8d4c11a

Source: FEDORA
Type: Mailing List, Patch, Third Party Advisory
FEDORA-2020-fa83ea0492

Source: FEDORA
Type: Mailing List, Patch, Third Party Advisory
FEDORA-2020-84fb0920fd

Source: GENTOO
Type: Third Party Advisory
GLSA-202003-54

Source: UBUNTU
Type: Third Party Advisory
USN-4515-1

Source: MISC
Type: Vendor Advisory
https://www.pureftpd.org/project/pure-ftpd/news/

Vulnerable Configuration:Configuration 1:
  • cpe:/a:pureftpd:pure-ftpd:*:*:*:*:*:*:*:* (Version < 1.0.50)

    • Configuration 2:
  • cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:fedoraproject:fedora:30:*:*:*:*:*:*:*
  • OR cpe:/o:fedoraproject:fedora:31:*:*:*:*:*:*:*
  • OR cpe:/o:fedoraproject:fedora:32:*:*:*:*:*:*:*
  • OR cpe:/a:fedoraproject:extra_packages_for_enterprise_linux:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:fedoraproject:extra_packages_for_enterprise_linux:7.0:*:*:*:*:*:*:*

    • Configuration 4:
  • cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

    • Configuration 5:
  • cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

    • Configuration CCN 1:
  • cpe:/a:pureftpd:pure-ftpd:1.0.49:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:com.ubuntu.bionic:def:202092740000000
    V
    		CVE-2020-9274 on Ubuntu 18.04 LTS (bionic) - low.
    2020-02-26
    oval:com.ubuntu.xenial:def:202092740000000
    V
    		CVE-2020-9274 on Ubuntu 16.04 LTS (xenial) - low.
    2020-02-26
    BACK
    pureftpd pure-ftpd *
    debian debian linux 8.0
    fedoraproject fedora 30
    fedoraproject fedora 31
    fedoraproject fedora 32
    fedoraproject extra packages for enterprise linux 8.0
    fedoraproject extra packages for enterprise linux 7.0
    debian debian linux 8.0
    canonical ubuntu linux 16.04
    pureftpd pure-ftpd 1.0.49