FTPDMIN special DOS device access
Published:		29.03.2007
Source:		MILW0RM
SecurityVulns ID:		7499
Type:		remote
Level:		5/10
Description:		Access to special devices (like //A:) causes DoS against application.

Affected:		FTPDMIN : ftpdmin 0.96
CVE:		CVE-2007-1580 (FTPDMIN 0.96 allows remote attackers to cause a denial of service (daemon crash) via a LIST command for a Windows drive letter, as demonstrated using "//A:". NOTE: this has been reported as a buffer overflow by some sources, but there is not a long argument.)

Discuss:

Read or add your comments to this news (0 comments)