Vulnerabilities > CVE-2005-3294 - Resource Management Errors vulnerability in Typsoft FTP Server
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Typsoft FTP Server 1.11, with "Sub Directory Include" enabled, allows remote attackers to cause a denial of service (crash) by sending multiple RETR commands. NOTE: it was later reported that 1.10 is also affected.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Exploit-Db
description TYPSoft FTP Server <= 1.11 (RETR) Denial of Service Vulnerability. CVE-2001-1156,CVE-2005-3294. Dos exploit for windows platform id EDB-ID:1251 last seen 2016-01-31 modified 2005-10-14 published 2005-10-14 reporter wood source https://www.exploit-db.com/download/1251/ title TYPSoft FTP Server <= 1.11 RETR Denial of Service Vulnerability description TYPSoft FTP Server 1.10 - RETR CMD Denial of Service. CVE-2005-3294. Dos exploit for windows platform file exploits/windows/dos/15860.py id EDB-ID:15860 last seen 2016-02-01 modified 2010-12-29 platform windows port published 2010-12-29 reporter emgent source https://www.exploit-db.com/download/15860/ title TYPSoft FTP Server 1.10 - RETR CMD Denial of Service type dos description TYPSoft FTP Server v1.10 RETR Command DoS. CVE-2005-3294. Dos exploit for windows platform id EDB-ID:12604 last seen 2016-02-01 modified 2010-05-14 published 2010-05-14 reporter Jeremiah Talamantes source https://www.exploit-db.com/download/12604/ title TYPSoft FTP Server 1.10 - RETR Command DoS
Nessus
NASL family | FTP |
NASL id | TYPSOFTFTP_RETR0_DOS.NASL |
description | The remote host appears to be using TYPSoft FTP Server, a small FTP server for Windows. According to its banner, the version of TYPSoft FTP Server installed on the remote host is 1.10 or earlier. Such versions suffer from several denial of service vulnerabilities. A remote attacker, possibly using anonymous access, can cause the server to stop responding by sending it an |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 20012 |
published | 2005-10-14 |
reporter | This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/20012 |
title | TYPSoft FTP Server <= 1.10 Multiple DoS |
code |
|
Packetstorm
data source | https://packetstormsecurity.com/files/download/97139/typsoft110-dos.txt |
id | PACKETSTORM:97139 |
last seen | 2016-12-05 |
published | 2010-12-29 |
reporter | Emanuele Gentili |
source | https://packetstormsecurity.com/files/97139/TYPSoft-FTP-Server-1.10-Denial-Of-Service.html |
title | TYPSoft FTP Server 1.10 Denial Of Service |
Seebug
bulletinFamily | exploit |
description | No description provided by source. |
id | SSV:70495 |
last seen | 2017-11-19 |
modified | 2014-07-01 |
published | 2014-07-01 |
reporter | Root |
source | https://www.seebug.org/vuldb/ssvid-70495 |
title | TYPSoft FTP Server (v 1.10) RETR CMD Denial of Service |