Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Denial of Service >> Sambar Server FTP SIZE Command Denial of Service Vulnerability

Vulnerability Assessment Details

Sambar Server FTP SIZE Command Denial of Service Vulnerability

Vulnerability Assessment Summary
Tries to crash Sambar Server with long FTP size command

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote FTP server is affected by a denial of service
vulnerability.

Description :

The remote host appears to be using Sambar Server, a multi-service
application for Windows and Linux.

The version of Sambar installed on the remote host crashes when its
FTP server component attempts to process a specially-crafted SIZE
command. A authenticated remote attacker can leverage this flaw to
deny service to legitimate users.

See also :

http://milw0rm.com/exploits/2934

Solution :

Unknown at this time.

Network Security Threat Level:

Low / CVSS Base Score : 1
(AV:R/AC:L/Au:R/C:N/I:N/A:P/B:N)

Networks Security ID: 21617

Vulnerability Assessment Copyright: This script is Copyright (C) 2006-2007 Tenable Network Security

Cables, Connectors