WS_FTP Server Path Parsing Remote DoS

High Nessus Plugin ID 14584


The remote FTP server is prone to a denial of service attack.


According to its banner, the version of WS_FTP on the remote host is vulnerable to a remote denial of service.

There is an error in the parsing of file paths. Exploitation of this flaw may cause a vulnerable system to use a large amount of CPU resources.


Upgrade to WS_FTP Server 5.03 or later.

See Also

Plugin Details

Severity: High

ID: 14584

File Name: wsftp_file_path_parsing_dos.nasl

Version: $Revision: 1.27 $

Type: remote

Family: FTP

Published: 2004/08/31

Modified: 2011/11/28

Dependencies: 10092, 10079

Risk Information

Risk Factor: High


Base Score: 7.8

Temporal Score: 6.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

Vulnerability Information

Exploit Available: true

Exploit Ease: No exploit is required

Vulnerability Publication Date: 2004/08/31

Reference Information

CVE: CVE-2004-1643

BID: 11065

OSVDB: 9382