 |
|
|
|
| Vulnerability details : |
| |
 |
|
Cesar FTP RETR Command Handling DoS |
|
|
Fiche créée le 2004-02-19 16:48:40, dernière mise à jour le 2008-03-02 23:47:15
CesarFTP contains a flaw that may allow a remote denial of service. The issue is triggered when specially-crafted user:pass command followed by a string containing more than 4084 characters is sent to the server. It result in loss of availability becuase the server will consume 100% of the available CPU resources.
Example:
ftp://user:pass 127 0 0 1/< ... >=4084 symbols ... >/
|
| |
| ACLogic 0.99e Affected | | | Attack Type : Denial of Service
saturation flood, crash, lock up, forced reboot. | Découvert le 2004-02-17 16:50:58
| | Disclosure : OSVDB Verified | Confirmé le 2004-02-17 16:50:58
| | Exploit : Exploit Public | Exploit découvert le 1970-01-01 07:00:00
| Impact : Loss of Availability
Assurance of timely and reliable access to data.
Examples: any DoS attack of any kind, unauthorized file deletion, etc. anything that can cause the availability of a service or information to be impacted. | | | Location : Remote / Network Access
If network access if required and exploit can be done remotely. | | |
| |
| External refs : |
| OSVDB 3999 | | | | | | | | | | | | | | | | | | |
| |
| |
| |
| |
|
|
|
|
| Free consultation (search) |
|
|
|
|
|
| |
|
|
|
