ACLogic CesarFTP 0.99 - Remote Resource Exhaustion (Denial of Service)

EDB-ID:

23700


Type:

dos


Platform:

Windows

Date:

2004-02-16


source: https://www.securityfocus.com/bid/9666/info

It has been reported that CesarFTP is prone to a remote resource exhaustion vulnerability. This issue is due to the application failing to properly validate user input. 

Successful exploitation of this issue may cause the affected server to hang, denying service to legitimate users. It has been conjectured that this issue may be due to a boundary management problem that may lead to arbitrary code execution, however this has yet to be verified.

ftp://www.example.com/user:pass@127.0.0.1/< ... >=4084 symbols ... >/