Vulnerabilities > CVE-2004-2081 - Denial Of Service vulnerability in Karjasoft Sami FTP Server 1.1.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The samiftp.dll library in Sami FTP Server 1.1.3 allows local users to cause a denial of service (pmsystem.exe crash) by issuing (1) a CD command with a tilde (~) character or dot dot (/../) or (2) a GET command for an unavailable file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Sami FTP Server 1.1.3 Invalid Command Argument Local DoS. CVE-2004-2081. Dos exploit for windows platform |
id | EDB-ID:23692 |
last seen | 2016-02-02 |
modified | 2004-02-13 |
published | 2004-02-13 |
reporter | intuit e.b. |
source | https://www.exploit-db.com/download/23692/ |
title | Sami FTP Server 1.1.3 Invalid Command Argument Local DoS |
Nessus
NASL family | FTP |
NASL id | SAMI_FTP.NASL |
description | The remote host is running SAMI FTP server. There is a bug in the way this server handles certain FTP command requests that may allow an attacker to crash the affected service. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 12061 |
published | 2004-02-17 |
reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/12061 |
title | Sami FTP Server Multiple DoS |