5 matches found
WinFTP 2.3.0 NLST Denial of Service
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WinFTP 2.3.0 NLST Denial of Service', 'Description' = %q This module is a very rough port of Julien Bedard's PoC. You need a valid login, but eve...
WinFTP Server NLST Command Denial of Service (CVE-2008-5666)
A denial of service vulnerability has been reported in WinFTP Server. The vulnerability is due to WinFTP Server failure to handle a NLST command when in PASV mode. A remote attacker can exploit this vulnerability by sending a specially crafted connection request to the vulnerable server...
CVE-2008-5666
CVE-2008-5666 affects WinFTP Server 2.3.0. In PASV mode, a sequence of FTP sessions with an invalid NLST -1 can trigger a denial of service. Public sources (e.g., PacketStorm Metasploit PoC, OpenVAS entries) corroborate a PASV/NLST DoS vector but do not provide vendor-issued fixes within the supp...
WinFTP 2.3.0 NLST Denial of Service
This module is a very rough port of Julien Bedard's PoC. You need a valid login, but even anonymous can do it if it has permission to call NLST. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule...
CVE-2008-5666
creationtimestamp| type| source ---|---|--- 2008-09-26 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6581 2008-10-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/6717 2018-05-29 15:50:33+00:00| seen|...