Vulnerabilities > CVE-2005-1034 - Denial of Service vulnerability in Netwin Surgeftp 2.2K3/2.2M1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
SurgeFTP 2.2m1 allows remote attackers to cause a denial of service (application hang) via the LEAK command.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Nessus
| NASL family | FTP |
| NASL id | SURGEFTP_LEAK_DOS.NASL |
| description | The remote host is running a version of SurgeFTP that is prone to a denial of service vulnerability when processing the non-standard LEAK command. Reportedly, an attacker can issue two of these commands without authenticating and cause the ftp daemon process to crash. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 18000 |
| published | 2005-04-08 |
| reporter | This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/18000 |
| title | SurgeFTP LEAK Command Remote DoS |