CVE-2004-0325
TYPSoft FTP Server 1.10 - Authenticated Denial of Service via Path Traversal Arguments
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2004-0325. PoCs published by intuit bug_hunter.
AI-analyzed exploit summary This exploit demonstrates a remote denial of service vulnerability in TYPESoft FTP Server by sending malformed commands with excessive path traversal sequences. The server crashes when processing these commands, leading to a DoS condition.
Description
TYPSoft FTP Server 1.10 allows remote authenticated users to cause a denial of service (CPU consumption) via "//../" arguments to (1) mkd, (2) xmkd, (3) dele, (4) size, (5) retr, (6) stor, (7) appe, (8) rnfr, (9) rnto, (10) rmd, or (11) xrmd, as demonstrated using "//../qwerty".
Exploits (1)
This exploit demonstrates a remote denial of service vulnerability in TYPESoft FTP Server by sending malformed commands with excessive path traversal sequences. The server crashes when processing these commands, leading to a DoS condition.