Cat Soft Serv-U FTP Server 2.5a - SITE PASS Denial of Service

EDB-ID:

19664


Author:

Ussr Labs

Type:

dos


Platform:

Windows

Date:

1999-12-02


source: https://www.securityfocus.com/bid/859/info

If the Serv-U FTP server receives an overly long argument to the SITE PASS command, it will crash. To issue this command, an attacker must be already logged in as an authenticated user, including an 'anonymous' user.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19664.zip