Cat Soft Serv-U FTP Server 2.5a - SITE PASS Denial of Service

EDB-ID:

19664

Author:

Ussr Labs

Type:

dos

Platform:

Windows

Published:

1999-12-02

source: http://www.securityfocus.com/bid/859/info

If the Serv-U FTP server receives an overly long argument to the SITE PASS command, it will crash. To issue this command, an attacker must be already logged in as an authenticated user, including an 'anonymous' user.

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/19664.zip