Vulnerabilities > CVE-2001-0696 - Denial of Service vulnerability in Netwin SurgeFTP Server MS-DOS Device Name

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
netwin

Summary

NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to cause a denial of service (crash) via a CD command to a directory with an MS-DOS device name such as con.

Vulnerable Configurations

Part Description Count
Application
Netwin
2