Info

Disclosure

Dec 24, 2003

Discovery

Unknown

Dates

Exploit

Dec 22, 2003

Solution

Unknown

Description

Cesar FTP Server contains a flaw that may allow a Remote denial of service. The issue is triggered when an excessive amount of "." are submitted in the CWD command occurs, and will result in loss of availability for the Platform.

Classification

Location: Remote/Network Access Required
Attack Type: Denial of Service
Impact: Loss of Availability
Solution: Workaround
Exploit: Exploit Unknown
OSVDB: Authentication Required

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

ACLogic

CesarFTP

0.x

References

Packet Storm: http://packetstormsecurity.org/0312-exploits/cesarDoS.txt
Secunia Advisory ID: 10490
Vendor URL: http://www.aclogic.com/

Credit

zib zib - zibeletteaol.com -

Direct URL: http://osvdb.org/36218