vendor:
KnFTPd
by:
Stefan Schurtz
7,5
CVSS
HIGH
Denial of Service (DoS)
400
CWE
Product Name: KnFTPd
Affected Version From: 1.0.0
Affected Version To: 1.0.0
Patch Exists: Yes
Related CWE: N/A
CPE: a:knftp:knftp:1.0.0
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2006
KnFTPd 1.0.0 ‘FEAT’ DoS PoC-Exploit
This PoC-Exploit is for KnFTPd 1.0.0, which is vulnerable to a Denial of Service (DoS) attack. The exploit sends a payload of a minimum length of 94 characters to the FTP server, which causes the server to crash.
Mitigation:
Upgrade to the latest version of KnFTPd, which is not vulnerable to this exploit.
