CVE-2004-0255 - XLight FTP Server Long Directory Request Remote Denial Of Service Vulnerability

Publication

2004-11-23

Last modification

2017-07-11

Summary

Xlight 1.52, with log to screen enabled, allows remote attackers to cause a denial of service by requesting a long directory consisting of . (dot) and / (slash) characters, which causes the server to crash when the administrator views the log file, possibly triggering a buffer overflow.

Description

A problem in the handling of large requests has been reported to result in service instability in XLight FTP Server under some circumstances. Because of this, it may be possible for a remote attacker to deny service to legitimate users of the software.

Solution

Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: info@vumetric.com <mailto:info@vumetric.com>.

Exploit

The following proof-of-concept has been made available by intuit:ftp://user@127.0.0.1/............................................................................................................................................................................................................../*/

Risk level (CVSS AV:N/AC:L/Au:N/C:N/I:N/A:P)

Medium

5.0

Access Vector

  • Network
  • Adjacent Network
  • Local

Access Complexity

  • Low
  • Medium
  • High

Authentication

  • None
  • Single
  • Multiple

Confident. Impact

  • Complete
  • Partial
  • None

Integrity Impact

  • Complete
  • Partial
  • None

Affected Products

Vendor Product Versions
Xlight FTP Server Xlight FTP Server  1.52 , 1.25 , 1.41 , 1.45