Cat Soft Serv-U FTP Server 2.5a - SITE PASS Denial of Service
| EKU-ID: 25255 | CVE: CVE-1999-0838;OSVDB-11278 | OSVDB-ID: |
| Author: Ussr Labs | Published: 1999-12-02 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 25255 | CVE: CVE-1999-0838;OSVDB-11278 | OSVDB-ID: |
| Author: Ussr Labs | Published: 1999-12-02 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/859/info If the Serv-U FTP server receives an overly long argument to the SITE PASS command, it will crash. To issue this command, an attacker must be already logged in as an authenticated user, including an 'anonymous' user. https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/19664.zip