Novell NetWare FTPServ Malformed Input Remote DoS

medium Nessus Plugin ID 11614

Language:

Synopsis

The remote FTP server is affected by a denial of service vulnerability.

Description

The installed version of Novell FTPServ does not handle certain types of input properly. An attacker can exploit this flaw to crash the FTP service.

Solution

Upgrade to the latest version of Novell FTPServ.

Plugin Details

Severity: Medium

ID: 11614

File Name: ftp_novell_dos.nasl

Version: 1.20

Type: remote

Family: Netware

Published: 5/9/2003

Updated: 1/16/2024

Supported Sensors: Nessus

Risk Information

CVSS Score Rationale: Score based on an in-depth analysis by tenable.

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS Score Source: manual

CVSS v3

Risk Factor: Medium

Base Score: 5.3

Temporal Score: 4.6

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

Required KB Items: ftp/login

Exploit Available: true

Exploit Ease: No exploit is required

Reference Information

BID: 7072

Detections

Analytics