Vulnerabilities > CVE-1999-0079 - Unspecified vulnerability in Bisonware FTP Server 3.5
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Remote attackers can cause a denial of service in FTP by issuing multiple PASV commands, causing the server to run out of available ports.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
| NASL family | FTP |
| NASL id | FTP_PASV_DOS.NASL |
| description | The remote FTP server allows users to make any amount of PASV commands, thus blocking the free ports for legitimate services and consuming file descriptors. An unauthenticated attacker could exploit this flaw to crash the FTP service. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 10085 |
| published | 1999-06-22 |
| reporter | This script is Copyright (C) 1999-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/10085 |
| title | Multiple Vendor FTP Multiple PASV Command Port Exhaustion DoS |