vendor:
PowerFTP Server
by:
Alex Hernandez
7.5
CVSS
HIGH
Denial of Service
119
CWE
Product Name: PowerFTP Server
Affected Version From: 02.03
Affected Version To: 02.03
Patch Exists: YES
Related CWE: N/A
CPE: a:cooolsoft:powerftp_server
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2001
PowerFTP Server v2.03 Denial of Service Vulnerability
Multiple instances of denial of service vulnerabilities exist in PowerFTP's FTP daemon. This is achieved by connecting to a vulnerable host and submitting an unusally long string of arbitrary characters. It has been reported that this issue may also be triggered by issuing an excessively long FTP command of 2050 bytes or more.
Mitigation:
Upgrade to the latest version of PowerFTP server.