WingFTP Server 4 Denial of Service Vulnerability

2012.10.10
Credit: Anil Pazvant
Risk: Medium
Local: No
Remote: Yes
CWE: N/A


CVSS Base Score: 6.8/10
Impact Subscore: 6.9/10
Exploitability Subscore: 8/10
Exploit range: Remote
Attack complexity: Low
Authentication: Single time
Confidentiality impact: None
Integrity impact: None
Availability impact: Complete

---------------------------------------------------------------------------------- | WingFTP Server Denial of Service Vulnerability | ----------------------------------------------------------------------------------- Summary ======= WingFTP server is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the service to crash, denying service to legitimate users CVE number: CVE-2012-4729 Impact: High Vendor homepage: http://www.wftpserver.com/serverhistory.htm#gotop Vendor notified: 30/08/2012 Vendor response: Vendor fixed the vulnerability and released the fix. . Affected Products ======== ======== Windows Platforms. Details ======= It is possible the crash the process by sending two sequential request to zip file option by authenticated users. The output of debugger: (6e4.c4c): C++ EH exception - code e06d7363 (first chance) ( After first request ) eax=026a6b80 ebx=00000001 ecx=00000004 edx=00000000 esi=00000001 edi=00000000 eip=7c90e514 esp=014ce1cc ebp=014ce1dc iopl=0 nv up ei ng nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00000286 ntdll!KiFastSystemCallRet: 7c90e514 c3 ret Impact ====== Process crashed and the all services down. Solution ======== Issue was fixed on Version 4.1.1 http://www.wftpserver.com/serverhistory.htm#gotop

References:

http://www.wftpserver.com/serverhistory.htm#gotop


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top