Vulnerability Description
TYPSoft FTP Server 1.10 allows remote authenticated users to cause a denial of service (CPU consumption) via "//../" arguments to (1) mkd, (2) xmkd, (3) dele, (4) size, (5) retr, (6) stor, (7) appe, (8) rnfr, (9) rnto, (10) rmd, or (11) xrmd, as demonstrated using "//../qwerty".
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Typsoft | Typsoft Ftp Server | 1.10 |
References
- http://marc.info/?l=bugtraq&m=107764173821905&w=2
- http://www.securityfocus.com/bid/9702Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15306
- http://marc.info/?l=bugtraq&m=107764173821905&w=2
- http://www.securityfocus.com/bid/9702Exploit
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15306
FAQ
What is CVE-2004-0325?
CVE-2004-0325 is a vulnerability with a CVSS score of 2.1 (LOW). TYPSoft FTP Server 1.10 allows remote authenticated users to cause a denial of service (CPU consumption) via "//../" arguments to (1) mkd, (2) xmkd, (3) dele, (4) size, (5) retr, (6) stor, (7) appe, (...
How severe is CVE-2004-0325?
CVE-2004-0325 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0325?
Check the references section above for vendor advisories and patch information. Affected products include: Typsoft Typsoft Ftp Server.