ID de Prueba:	1.3.6.1.4.1.25623.1.0.10934
Categoría:	FTP
Título:	MS FTPd DoS
Resumen:	NOSUMMARY
Descripción:	Description: It was possible to make the remote FTP server crash by sending the command 'STAT *?AAAAA....AAAAA' There is a bug in certain versions of Microsoft FTP server which can be exploited in this fashion. In addition, other FTP servers may react adversely to such a string. An attacker may use this flaw to prevent your FTP server from working properly Solution : see http://www.microsoft.com/technet/security/bulletin/ms02-018.mspx CAVEAT: If your FTP server is not a Microsoft product, then contact your FTP vendor for a patch. Risk factor : Medium
Referencia Cruzada:	BugTraq ID: 4482 Common Vulnerability Exposure (CVE) ID: CVE-2002-0073 http://www.securityfocus.com/bid/4482 Bugtraq: 20020417 Microsoft FTP Service STAT Globbing DoS (Google Search) http://marc.info/?l=bugtraq&m=101901273810598&w=2 http://www.cert.org/advisories/CA-2002-09.html CERT/CC vulnerability note: VU#412203 http://www.kb.cert.org/vuls/id/412203 Cisco Security Advisory: 20020415 Microsoft IIS Vulnerabilities in Cisco Products - MS02-018 http://www.cisco.com/warp/public/707/Microsoft-IIS-vulnerabilities-MS02-018.shtml http://www.digitaloffense.net/msftpd/advisory.txt Microsoft Security Bulletin: MS02-018 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-018 http://www.osvdb.org/3328 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A24 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A35 http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0023.html http://www.iss.net/security_center/static/8801.php
Copyright	This script is Copyright (C) 2002 Renaud Deraison

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.