Info

Disclosure

Jul 11, 2007

Discovery

Unknown

Dates

Exploit

Jul 11, 2007

Solution

Unknown

Description

WS_FTP Server contains a flaw that may allow a remote denial of service. The issue is triggered when a malformed packet is received by the logging server on UDP port 5151, and will result in loss of availability for the service.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service
Impact: Loss of Availability
Exploit: Exploit Public

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Ipswitch, Inc.

WS_FTP Server

7.5.29.0

References

CVE ID: 2007-3823 (see also: NVD)
Secunia Advisory ID: 26040
ISS X-Force ID: 35396
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2007-07/0246.html
Packet Storm: http://packetstormsecurity.org/0707-advisories/wsftp75290-dos.txt
Generic Informational URL: http://www.ipswitch.com/products/ws_ftp-server/index.asp
Other Advisory URL: http://www.vdalabs.com/tools/ipswitch.html
Keyword: UDP port 5151

Credit

Justin Seitz - jseitzvdalabs.com - VDA Labs LLC

Direct URL: http://osvdb.org/36218