Vulnerability Details CVE-2004-1643
WS_FTP 5.0.2 allows remote authenticated users to cause a denial of service (CPU consumption) via a CD command that contains an invalid path with a "../" sequence.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.095
EPSS Ranking 92.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=109389890712888&w=2
- http://secunia.com/advisories/12406
- http://www.securityfocus.com/bid/11065
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17155
- http://marc.info/?l=bugtraq&m=109389890712888&w=2
- http://secunia.com/advisories/12406
- http://www.securityfocus.com/bid/11065
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17155
Products affected by CVE-2004-1643
-
cpe:2.3:a:progress:ws_ftp_server:5.0.2