Summary
This host is running TYPSoft FTP Server and is prone to Denial of Service Vulnerability.
Impact
Successful exploitation will let the user crash the application to cause denial of service.
Solution
Upgrade to version 1.11 or later,
For updates refer to http://www.softpedia.com/get/Internet/Servers/FTP-Servers/TYPSoft-FTP-Server.shtml
Insight
The flaw is due to an error when handling the 'APPE' and 'DELE' commands. These can be exploited through sending multiple login request in same socket.
Affected
TYPSoft FTP Server version 1.10 and prior.
References
Severity
Classification
-
CVE CVE-2009-4105 -
CVSS Base Score: 3.5
AV:N/AC:M/Au:S/C:N/I:N/A:P
Related Vulnerabilities
- ngIRCd SSL/TLS Support MOTD Request Multiple Denial Of Service Vulnerabilities
- Oracle VM VirtualBox Local Denial of Service Vulnerability-01 Oct2013 (Linux)
- Wireshark IEEE 802.11 Dissector Denial of Service Vulnerability (Windows)
- Perl Denial of Service Vulnerability Jan 2015 (Windows)
- Trend Micro OfficeScan Client Denial Of Service Vulnerability