Vulnerabilities > CVE-2004-2081 - Unspecified vulnerability in Karjasoft Sami FTP Server 1.1.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The samiftp.dll library in Sami FTP Server 1.1.3 allows local users to cause a denial of service (pmsystem.exe crash) by issuing (1) a CD command with a tilde (~) character or dot dot (/../) or (2) a GET command for an unavailable file.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Sami FTP Server 1.1.3 Invalid Command Argument Local DoS. CVE-2004-2081. Dos exploit for windows platform |
| id | EDB-ID:23692 |
| last seen | 2016-02-02 |
| modified | 2004-02-13 |
| published | 2004-02-13 |
| reporter | intuit e.b. |
| source | https://www.exploit-db.com/download/23692/ |
| title | Sami FTP Server 1.1.3 Invalid Command Argument Local DoS |
Nessus
| NASL family | FTP |
| NASL id | SAMI_FTP.NASL |
| description | The remote host is running SAMI FTP server. There is a bug in the way this server handles certain FTP command requests that may allow an attacker to crash the affected service. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 12061 |
| published | 2004-02-17 |
| reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/12061 |
| title | Sami FTP Server Multiple DoS |
References
- http://www.karja.com/samiftp/news.html
- http://www.karja.com/samiftp/news.html
- http://www.securityfocus.com/archive/1/353753
- http://www.securityfocus.com/archive/1/353753
- http://www.securityfocus.com/bid/9657
- http://www.securityfocus.com/bid/9657
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15204
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15204