CVE-2004-1135

Ipswitch WS FTP Server - Buffer Overflow

Title source: rule

Description

Multiple buffer overflows in WS_FTP Server 5.03 2004.10.14 allow remote attackers to cause a denial of service (service crash) via long (1) SITE, (2) XMKD, (3) MKD, and (4) RNFR commands.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16719

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by NoPh0BiA · cdoswindows

https://www.exploit-db.com/exploits/664

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by et · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/ftp/wsftp_server_503_mkd.rb

View Code ZIP pw:eip

References (4)

[Mailing List] http://marc.info/?l=bugtraq&m=110177654524819&w=2

[Mailing List] http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/029600.html

[Various Sources] http://www.securiteam.com/exploits/6D00L2KBPG.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/18296

Scores

EPSS 0.5126

EPSS Percentile 97.9%

Details

Status published

Products (1)

ipswitch/ws_ftp_server 5.03

Published Jan 10, 2005

Tracked Since Feb 18, 2026