Sambar Server FTP SIZE Command Lets Remote Authenticated Users Deny Service
|
SecurityTracker Alert ID: 1017393 |
SecurityTracker URL: http://securitytracker.com/id/1017393
|
CVE Reference:
CVE-2006-6624
(Links to External Site)
|
Updated: May 22 2008
|
Original Entry Date: Dec 18 2006
|
Impact:
Denial of service via network
|
Exploit Included: Yes
|
Version(s): 6.4
|
Description:
A vulnerability was reported in Sambar Server. A remote authenticated user can cause denial of service conditions.
A remote authenticated user can send a specially crafted SIZE command to cause the target FTP service to crash.
rgod reported this vulnerability.
The original advisory and demonstration exploit is available at:
http://www.milw0rm.com/exploits/2934
|
Impact:
A remote authenticated user can cause denial of service conditions on the target system.
|
Solution:
No solution was available at the time of this entry.
|
Vendor URL: www.sambar.com/ (Links to External Site)
|
Cause:
Input validation error
|
Underlying OS: Linux (Any), Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
|
[Original Message Not Available for Viewing]
|
|