Details of VAR-E-200106-0064

ID

VAR-E-200106-0064

CVE

cve_id:

CVE-2001-0706

Trust: 1.6

sources: EXPLOIT-DB: 20922 // EDBNET: 43038

EDB ID

20922

TITLE

Rumpus FTP Server 1.3.x/2.0.3 - Stack Overflow Denial of Service - OSX dos Exploit

Trust: 0.6

sources: EXPLOIT-DB: 20922

DESCRIPTION

Rumpus FTP Server 1.3.x/2.0.3 - Stack Overflow Denial of Service. CVE-2001-0706CVE-1865 . dos exploit for OSX platform

Trust: 0.6

sources: EXPLOIT-DB: 20922

AFFECTED PRODUCTS

vendor:	rumpus	model:	ftp server	scope:	eq	version:	1.3.x/2.0.3	Trust: 1.6
vendor:	maxum	model:	rumpus ftp server dev	scope:	eq	version:	2.0.3	Trust: 0.3
vendor:	maxum	model:	rumpus ftp server	scope:	eq	version:	1.3.5	Trust: 0.3
vendor:	maxum	model:	rumpus ftp server	scope:	eq	version:	1.3.4	Trust: 0.3
vendor:	maxum	model:	rumpus ftp server	scope:	eq	version:	1.3.2	Trust: 0.3
vendor:	maxum	model:	rumpus ftp server	scope:	ne	version:	1.3.6	Trust: 0.3

sources: BID: 2864 // EXPLOIT-DB: 20922 // EDBNET: 43038

EXPLOIT

source: https://www.securityfocus.com/bid/2864/info

Rumpus FTP Server is an implementation for MacOS which allows file-sharing across TCP/IP connections.

Rumpus FTP is prone to a denial of service. An ftp user can engage the attack by making a directory with an unusual number of sub-folders. This forces the software to quit, as it is unable to handle the creation of so many directories at one time. The FTP server must be rebooted to regain normal functionality.

It is required that a user be logged in to carry out this attack. It may be possible for remote users to exploit this vulnerability, but authentication is required and anonymous ftp access does not grant users the privileges neccesary to create directories.

Executing command 'mkdir A:A:A:A:A:A:A:A:A:A:A:A:A:A:A:A:A:A:A:A' will make Rumpus quit.

Trust: 1.0

sources: EXPLOIT-DB: 20922

EXPLOIT LANGUAGE

txt

Trust: 0.6

sources: EXPLOIT-DB: 20922

PRICE

free

Trust: 0.6

sources: EXPLOIT-DB: 20922

TYPE

Stack Overflow Denial of Service

Trust: 1.0

sources: EXPLOIT-DB: 20922

CREDITS

Jass Seljamaa

Trust: 0.6

sources: EXPLOIT-DB: 20922

EXTERNAL IDS

db:	BID	id:	2864	Trust: 1.9
db:	NVD	id:	CVE-2001-0706	Trust: 1.6
db:	EXPLOIT-DB	id:	20922	Trust: 1.6
db:	EDBNET	id:	43038	Trust: 0.6

sources: BID: 2864 // EXPLOIT-DB: 20922 // EDBNET: 43038

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2001-0706	Trust: 1.6
url:	https://www.securityfocus.com/bid/2864/info	Trust: 1.0
url:	https://www.exploit-db.com/exploits/20922/	Trust: 0.6
url:	http://www.maxum.com/rumpus/	Trust: 0.3

sources: BID: 2864 // EXPLOIT-DB: 20922 // EDBNET: 43038

SOURCES

db:	BID	id:	2864
db:	EXPLOIT-DB	id:	20922
db:	EDBNET	id:	43038

LAST UPDATE DATE

2022-07-27T10:00:16.149000+00:00

SOURCES UPDATE DATE

db:

BID

id:

2864

date:

2001-06-12T00:00:00

SOURCES RELEASE DATE

db:	BID	id:	2864	date:	2001-06-12T00:00:00
db:	EXPLOIT-DB	id:	20922	date:	2001-06-12T00:00:00
db:	EDBNET	id:	43038	date:	2001-06-12T00:00:00