Personal FTP Server Bug in Processing RETR Commands Lets Remote Authenticated Users Deny Service
|
|
SecurityTracker Alert ID: 1020897 |
|
SecurityTracker URL: http://securitytracker.com/id/1020897
|
|
CVE Reference:
CVE-2008-4136
(Links to External Site)
|
Updated: Mar 9 2009
|
Original Entry Date: Sep 18 2008
|
Impact:
Denial of service via network
|
Exploit Included: Yes
|
Version(s): 6.0f
|
Description:
A vulnerability was reported in Personal FTP Server. A remote authenticated user can cause denial of service conditions.
A remote authenticated user can send specially crafted RETR commands to cause the target service to crash.
The original advisory is available at:
http://shinnok.evonet.ro/vulns_html/pftp.html
A demonstration exploit is available at:
http://www.milw0rm.com/exploits/6458
Shinnok raydenxy reported this vulnerability.
|
Impact:
A remote authenticated user can cause denial of service conditions on the target system.
|
Solution:
No solution was available at the time of this entry.
|
Vendor URL: www.michael-roth-software.de/ (Links to External Site)
|
Cause:
Exception handling error
|
Underlying OS:
Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Thu, 18 Sep 2008 09:11:15 -0400
Subject: Personal FTP Server
|
http://shinnok.evonet.ro/vulns_html/pftp.html
|
|
