CVE-2007-6737

CVE-2007-6737 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

FTPServer.py in pyftpdlib before 0.2.0 does not increment the attempted_logins count for a USER command that specifies an invalid username, which makes it easier for remote attackers to obtain access via a brute-force attack.

Learn more about our Cis Benchmark Audit For Server Software.