Denial of Service Vulnerability in WinFTP FTP Server 2.3.0
CVE-2008-5666

Currently unrated

Key Information:

Vendor

Wftpserver

Status
Winftp Ftp Server
Vendor
CVE Published:
19 December 2008

What is CVE-2008-5666?

The WinFTP FTP Server version 2.3.0 is susceptible to a denial of service attack when operating in passive mode. This vulnerability allows remote authenticated users to disrupt service by issuing a series of FTP sessions that incorporate an invalid 'NLST -1' command. Exploiting this weakness can lead to significant service interruptions for the affected server, potentially impacting accessibility for legitimate users.

References

http://www.vupen.com/english/advisories/2008/2801
vdb-entryx_refsource_VUPEN
http://securityreason.com/securityalert/4785
third-party-advisoryx_refsource_SREASON
http://secunia.com/advisories/32209
third-party-advisoryx_refsource_SECUNIA

EPSS Score

63% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.