KnFTPd 'FEAT' Command Remote Denial Of Service Vulnerability
BID:52805
Info
KnFTPd 'FEAT' Command Remote Denial Of Service Vulnerability
| Bugtraq ID: | 52805 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2012-5905 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 29 2012 12:00AM |
| Updated: | Jan 11 2013 01:10PM |
| Credit: | Stefan Schurtz |
| Vulnerable: |
knftpd knftpd 1.0 |
| Not Vulnerable: | |
Discussion
KnFTPd 'FEAT' Command Remote Denial Of Service Vulnerability
KnFTPd is prone to a remote denial-of-service vulnerability.
Exploiting this issue allows remote attackers to crash the affected FTP server, denying service to legitimate users.
KnFTPd 1.0.0 is vulnerable; other versions may also be affected.
KnFTPd is prone to a remote denial-of-service vulnerability.
Exploiting this issue allows remote attackers to crash the affected FTP server, denying service to legitimate users.
KnFTPd 1.0.0 is vulnerable; other versions may also be affected.
Exploit / POC
KnFTPd 'FEAT' Command Remote Denial Of Service Vulnerability
The following exploit code is available:
The following exploit code is available:
Solution / Fix
KnFTPd 'FEAT' Command Remote Denial Of Service Vulnerability
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
KnFTPd 'FEAT' Command Remote Denial Of Service Vulnerability
References:
References:
- KnFTPd Download Page (elifkeir)