Multiple Vendor FTPD on Windows Floppy Request CPU Consumption DoS
Medium Nessus Plugin ID 10822
SynopsisThe remote FTP server may be vulnerable to a denial of service.
DescriptionIt is possible for a remote user to cause a denial of service on a host running Serv-U FTP Server, G6 FTP Server or WarFTPd Server. Repeatedly submitting an 'a:/' GET or RETR request, appended with arbitrary data, will cause the CPU usage to spike to 100%.
Nessus identified the remote server as running version 1.71 of WarFTPd.
SolutionUpgrade to the latest version of WarFTPd or contact your FTP vendor for details.