Denial of Service Vulnerability in NetWin SurgeFTP by NetWin Technologies
CVE-2001-0696

Currently unrated

Key Information:

Vendor: Netwin
Status: Surgeftp
Vendor: CVE Published:; 20 September 2001

What is CVE-2001-0696?

The vulnerability in NetWin SurgeFTP allows a remote attacker to exploit a weakness by sending a CD command to directories named with MS-DOS device names, such as 'con', leading to a denial of service that causes the FTP server to crash. This puts systems at risk as it can disrupt services and potentially affect operations.

References

http://www.securityfocus.com/archive/1/191916

mailing-listx_refsource_BUGTRAQ

http://netwinsite.com/surgeftp/manual/updates.htm

x_refsource_MISC

http://www.securityfocus.com/bid/2891

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 20, 2001
Vulnerability Reserved
Aug 29, 2001

Netwin

What is CVE-2001-0696?

References

Timeline