Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Windows >> FileZilla Server < 0.9.22 Denial of Service Vulnerabilities


Vulnerability Assessment Details

FileZilla Server < 0.9.22 Denial of Service Vulnerabilities

Vulnerability Assessment Summary
Checks version of FileZilla Server Interface

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote Windows host has an application that is suffers from
multiple denial of service vulnerabilities.

Description :

According to its version, the FileZilla Server Interface installed on
the remote host is affected by several denial of service flaws, which
could be leveraged by an authenticated attacker to crash the server and
deny service to legitimate users.

See also :

http://retrogod.altervista.org/filezilla_0921_dos.html
http://milw0rm.com/exploits/2914
http://www.nessus.org/u?85be86cd

Solution :

Upgrade to FileZilla Server version 0.9.22 or later.

Network Security Threat Level:

Low / CVSS Base Score : 1.4
(AV:R/AC:L/Au:R/C:N/I:N/A:P/B:N)

Networks Security ID: 21542, 21549

Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security

Cables, Connectors

Cisco WS-3750G-24TS-S1U V03
$175.0
Cisco WS-3750G-24TS-S1U V03 pictureIBM Rackswitch G8052 7309-G52 managed - rack-mountable
$999.0
IBM Rackswitch G8052 7309-G52 managed - rack-mountable picture8 Port PoE Gigabit 10/100/1000 Ethernet Desktop/Rackmount Switch Hub
$157.38
8 Port PoE Gigabit 10/100/1000 Ethernet  Desktop/Rackmount Switch Hub pictureLINKSYS 10/100 16 PORT WORKGROUP SWITCH EZXS16W
$12.95
LINKSYS 10/100 16 PORT WORKGROUP SWITCH EZXS16W picture


Discussions

No Discussions have been posted on this vulnerability.