Xlight Ftp Server » Xlight Ftp Server : Security Vulnerabilities, CVEs, Published In 2004 (Denial of service)
Xlight FTP server 1.52 allows remote authenticated users to cause a denial of service (crash) via a RETR command with a long argument containing a large number of / (slash) characters, possibly triggering a buffer overflow.
Max CVSS
5.0
EPSS Score
8.96%
Published
2004-11-23
Updated
2017-07-11
Xlight 1.52, with log to screen enabled, allows remote attackers to cause a denial of service by requesting a long directory consisting of . (dot) and / (slash) characters, which causes the server to crash when the administrator views the log file, possibly triggering a buffer overflow.
Max CVSS
5.0
EPSS Score
4.59%
Published
2004-11-23
Updated
2017-07-11
2 vulnerabilities found