WFTPD Server SITE ADMIN Command Remote Denial of Service Vulnerability

Bugtraq ID:	22046
Class:	Failure to Handle Exceptional Conditions
CVE:
Remote:	Yes
Local:	No
Published:	Jan 14 2007 12:00AM
Updated:	Jan 15 2007 08:50PM
Credit:	Marsu <[email protected]> is credited with the discovery of this vulnerability.
Vulnerable:	Texas Imperial Software WFTPD Pro 3.21 R2 Texas Imperial Software WFTPD Pro 3.21 R3 Texas Imperial Software WFTPD Pro 3.21 R1 Texas Imperial Software WFTPD Pro 3.21 Texas Imperial Software WFTPD Pro 3.20 Texas Imperial Software WFTPD Pro 3.10 R1 - Microsoft Windows 2000 Professional SP2 - Microsoft Windows 2000 Professional SP1 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows ME - Microsoft Windows NT 4.0 SP6a - Microsoft Windows NT 4.0 SP6 - Microsoft Windows NT 4.0 SP5 - Microsoft Windows NT 4.0 SP4 - Microsoft Windows NT 4.0 SP3 - Microsoft Windows NT 4.0 SP2 - Microsoft Windows NT 4.0 SP1 - Microsoft Windows NT 4.0 Texas Imperial Software WFTPD 3.21 R2 Texas Imperial Software WFTPD 3.21 R3 Texas Imperial Software WFTPD 3.21 R1 Texas Imperial Software WFTPD 3.21 Texas Imperial Software WFTPD 3.20 Texas Imperial Software WFTPD 3.10 R1 - Microsoft Windows 2000 Professional SP2 - Microsoft Windows 2000 Professional SP1 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows ME - Microsoft Windows NT 4.0 SP6a - Microsoft Windows NT 4.0 SP6 - Microsoft Windows NT 4.0 SP5 - Microsoft Windows NT 4.0 SP4 - Microsoft Windows NT 4.0 SP3 - Microsoft Windows NT 4.0 SP2 - Microsoft Windows NT 4.0 SP1 - Microsoft Windows NT 4.0 Texas Imperial Software WFTPD 3.0 Pro - Microsoft Windows 2000 Professional - Microsoft Windows NT 4.0 - Microsoft Windows NT 3.5 Texas Imperial Software WFTPD 3.0 0R5 Pro - Microsoft Windows 2000 Professional - Microsoft Windows NT 4.0 Texas Imperial Software WFTPD 3.0 0R5 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows ME - Microsoft Windows NT 4.0 Texas Imperial Software WFTPD 3.0 0R4 Pro - Microsoft Windows NT 4.0 Texas Imperial Software WFTPD 3.0 0R4 - Microsoft Windows NT 4.0 Texas Imperial Software WFTPD 3.0 0R3 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 Texas Imperial Software WFTPD 3.0 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 Texas Imperial Software WFTPD 2.41 RC14 Pro - Microsoft Windows 3.11 - Microsoft Windows 3.1 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 - Microsoft Windows NT 3.5 Texas Imperial Software WFTPD 2.41 RC14 - Microsoft Windows 3.11 - Microsoft Windows 3.1 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 - Microsoft Windows NT 3.5 Texas Imperial Software WFTPD 2.40 - Microsoft Windows 3.11 - Microsoft Windows 3.11 - Microsoft Windows 3.1 - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 3.5.1 - Microsoft Windows NT 4.0 - Microsoft Windows NT 3.5 Texas Imperial Software WFTPD 2.34 - Microsoft Windows 3.11 - Microsoft Windows 3.11 - Microsoft Windows 3.1 - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 3.5.1 - Microsoft Windows NT 4.0 - Microsoft Windows NT 3.5 Texas Imperial Software WFTPD 2.14 Pro - Microsoft Windows 3.11 - Microsoft Windows 2000 Professional - Microsoft Windows 95 - Microsoft Windows 98 - Microsoft Windows NT 4.0 - Microsoft Windows NT 3.5 Texas Imperial Software WFTPD 2.4.1 RC12 - Microsoft Windows 2000 Professional - Microsoft Windows NT 4.0 Texas Imperial Software WFTPD 2.4.1 RC11 Texas Imperial Software WFTPD 2.4.1 - Microsoft Windows 2000 Professional - Microsoft Windows NT 4.0 Texas Imperial Software WFTPD 3.25 Texas Imperial Software WFTPD 3.23
Not Vulnerable:

WFTPD Server SITE ADMIN Command Remote Denial of Service Vulnerability

WFTPD Server is prone to a remote denial-of-service vulnerability.

Exploiting this issue allows remote attackers to crash the application, denying further service to legitimate users.

WFTPD Server 3.25 and prior versions are reported vulnerable; other versions may also be affected.

WFTPD Server SITE ADMIN Command Remote Denial of Service Vulnerability

A proof of concept has been provided:

• /data/vulnerabilities/exploits/wftpd_dos.c

WFTPD Server SITE ADMIN Command Remote Denial of Service Vulnerability

Solution:
Currently we are not aware of any solutions for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].

WFTPD Server SITE ADMIN Command Remote Denial of Service Vulnerability

References:

• WFTPD Homepage (Texas Imperial Software)