Info

Disclosure

Aug 31, 2004

Discovery

Unknown

Dates

Exploit

Aug 31, 2004

Solution

Unknown

Description

CesarFTP contains a flaw that may allow a remote denial of service. The issue is triggered when a malicious user sends a specially crafted long command string, and will result in loss of availability for the server.

Classification

Location: Remote/Network Access Required
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

ACLogic

CesarFTP

0.99g

References

Secunia Advisory ID: 12417
Vendor URL: http://www.aclogic.com/
Other Advisory URL: http://www.cnhonker.com/index.php?module=releases&act=view&type=2&id=64
http://www.securiteam.com/windowsntfocus/5XP100ADPY.html

Credit

lion - lioncnhonker.net -

Direct URL: http://osvdb.org/36218