CVE-2004-0295

Broker FTP Server 6.1.0.0 - Denial of Service via Idle Connection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-0295. PoCs published by SecuriTeam.

AI-analyzed exploit summary This Perl script exploits a denial-of-service vulnerability in TransSoft Broker FTP Server by sending a malformed packet to trigger high CPU usage or an exception. It targets port 8701 and sends a single 'A' character followed by a long sleep, causing the server to hang or crash.

Description

TsFtpSrv.exe in Broker FTP 6.1.0.0 allows remote attackers to cause a denial of service (CPU consumption) via an open idle connection.

Exploits (1)

exploitdb WORKING POC VERIFIED
by SecuriTeam · perldoswindows
https://www.exploit-db.com/exploits/23715

This Perl script exploits a denial-of-service vulnerability in TransSoft Broker FTP Server by sending a malformed packet to trigger high CPU usage or an exception. It targets port 8701 and sends a single 'A' character followed by a long sleep, causing the server to hang or crash.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: TransSoft Broker FTP Server 6.1.0.0
No auth needed
Prerequisites: Network access to the target server · Target FTP server running on port 8701
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=107705346817241&w=2
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/9680
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15242

Scores

EPSS 0.0313
EPSS Percentile 86.2%

Details

Status published
Products (1)
transsoft/broker_ftp_server 6.1_.0.0
Published Nov 23, 2004
Tracked Since Feb 18, 2026