Summary
The version of War FTP Daemon running on this host contains a buffer overflow in the code that handles the USER and PASS commands. A potential intruder could use this vulnerability to crash the server, as well as run arbitrary commands on the system.
Solution
Upgrade to the latest release of the War FTP Daemon available from the following web site: http://www.jgaa.com/
Severity
Classification
-
CVE CVE-1999-0256 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- SolarFTP USER Command Remote Denial of Service Vulnerability
- War FTP Daemon 'USER' and 'PASS' Remote Format String Vulnerability
- FTPGetter 'PASV' Command Remote Stack Buffer Overflow Vulnerability
- SamiFTP Server 'MKD' Command Buffer Overflow Vulnerability
- FTPx Corp FTP Explorer Directory Traversal Vulnerability