GlobalSCAPE Secure FTP Server < 3.1.4 Build 01.10.2006 Custom Command Remote DoS

Medium Nessus Network Monitor Plugin ID 3506

Synopsis

The remote FTP server is prone to denial of service attacks.

Description

GlobalSCAPE Secure FTP Server is installed on the remote Windows host. The installed version of GlobalSCAPE Secure FTP Server on the remote host is affected by a denial of service vulnerability involving a lengthy parameter line to an unspecified custom command.

Solution

Upgrade to version 3.1.4 Build 01.10.2006 or higher.

See Also

http://www.globalscape.com/gsftps/history.asp

Plugin Details

Severity: Medium

ID: 3506

File Name: 3506.prm

Family: FTP Servers

Published: 2004/08/18

Modified: 2016/01/21

Dependencies: 1803, 1804, 3222

Nessus ID: 21188

Risk Information

Risk Factor: Medium

CVSSv2

Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

CVSSv3

Base Score: 5.3

Temporal Score: 4.9

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS3#E:F/RL:O/RC:C

Reference Information

CVE: CVE-2006-1693

BID: 17398

OSVDB: 24451