Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FTP >> Multiple WarFTPd DoS


Vulnerability Assessment Details

Multiple WarFTPd DoS

Vulnerability Assessment Summary
Checks if the version of the remote warftpd

Detailed Explanation for this Vulnerability Assessment

The remote WarFTPd server is running a 1.71 version.

It is possible for a remote user to cause a denial of
service on a host running Serv-U FTP Server, G6 FTP Server
or WarFTPd Server. Repeatedly submitting an 'a:/' GET or
RETR request, appended with arbitrary data,
will cause the CPU usage to spike to 100%.

Reference: http://www.securityfocus.com/bid/2698

Solution : upgrade to the latest version of WarFTPd
Network Security Threat Level: Medium

Networks Security ID: 2698

Vulnerability Assessment Copyright: This script is Copyright (C) 2000 StrongHoldNET

Cables, Connectors

USED Cisco A9K-2T20GE-L Module 2 Port 20x SFP 22x Expansion Slot 10 Gigabit
$2460.0
USED Cisco A9K-2T20GE-L Module 2 Port 20x SFP 22x Expansion Slot 10 Gigabit pictureFinisar FCLF-8520-3 Copper 1000Base-T SFP Transceiver 7xAvailable
$45.0
Finisar FCLF-8520-3 Copper 1000Base-T SFP Transceiver 7xAvailable pictureBrocade VA-40FC BR-VA40FC-1008 40 Ports 8GB Switch with 40 8GB SFP 2xAvailable
$795.0
Brocade VA-40FC BR-VA40FC-1008 40 Ports 8GB Switch with 40 8GB SFP 2xAvailable pictureGenuine ALCATEL LUCENT OS6450-XNI-U2 10 Gigabit SFP+ Module 2xAvailable
$235.5
Genuine ALCATEL LUCENT OS6450-XNI-U2 10 Gigabit SFP+ Module 2xAvailable picture


Discussions

No Discussions have been posted on this vulnerability.