Vulnerabilities > CVE-2004-1135 - Denial-Of-Service vulnerability in Ipswitch WS FTP Server 5.03
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Multiple buffer overflows in WS_FTP Server 5.03 2004.10.14 allow remote attackers to cause a denial of service (service crash) via long (1) SITE, (2) XMKD, (3) MKD, and (4) RNFR commands.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description WS-FTP Server 5.03 MKD Overflow. CVE-2004-1135. Remote exploit for windows platform id EDB-ID:16719 last seen 2016-02-02 modified 2010-10-05 published 2010-10-05 reporter metasploit source https://www.exploit-db.com/download/16719/ title WS-FTP Server 5.03 MKD Overflow description WS_FTP Server <= 5.03 MKD Remote Buffer Overflow Exploit. CVE-2004-1135. Dos exploit for windows platform id EDB-ID:664 last seen 2016-01-31 modified 2004-11-29 published 2004-11-29 reporter NoPh0BiA source https://www.exploit-db.com/download/664/ title WS_FTP Server <= 5.03 MKD Remote Buffer Overflow Exploit
Metasploit
description | This module exploits the buffer overflow found in the MKD command in IPSWITCH WS_FTP Server 5.03 discovered by Reed Arvin. |
id | MSF:EXPLOIT/WINDOWS/FTP/WSFTP_SERVER_503_MKD |
last seen | 2020-06-01 |
modified | 2017-07-24 |
published | 2005-11-27 |
references | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1135 |
reporter | Rapid7 |
source | https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/ftp/wsftp_server_503_mkd.rb |
title | WS-FTP Server 5.03 MKD Overflow |
Nessus
NASL family | FTP |
NASL id | WSFTP_OVERFLOWS2.NASL |
description | According to its version number, the remote WS_FTP server is vulnerable to multiple buffer overflows which may be used by an attacker to execute arbitrary code on the remote system. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 15857 |
published | 2004-11-30 |
reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/15857 |
title | WS_FTP Server Multiple Command Remote Overflow DoS |
code |
|
Packetstorm
data source | https://packetstormsecurity.com/files/download/83216/wsftp_server_503_mkd.rb.txt |
id | PACKETSTORM:83216 |
last seen | 2016-12-05 |
published | 2009-11-26 |
reporter | Efrain Torres |
source | https://packetstormsecurity.com/files/83216/WS-FTP-Server-5.03-MKD-Overflow.html |
title | WS-FTP Server 5.03 MKD Overflow |
Saint
bid | 11772 |
description | WS_FTP MKD command buffer overflow |
id | ftp_wsftpver |
osvdb | 12509 |
title | ws_ftp_mkd_bo |
type | remote |