ID
VAR-E-200812-0133
TITLE
Rumpus FTP Server HTTP Command Remote Denial of Service Vulnerability
Trust: 0.3
DESCRIPTION
Maxum Rumpus FTP Server is prone to a remote denial-of-service vulnerability.
This issue allows remote attackers to crash affected servers, denying service to legitimate users. Given the nature of this issue, attackers may also be able to run arbitrary code within the context of the vulnerable application, but this has not been confirmed.
Versions prior to Rumpus 6.0.1 are vulnerable.
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | maxum | model: | rumpus ftp server | scope: | eq | version: | 6.0 | Trust: 0.3 |
| vendor: | maxum | model: | rumpus ftp server | scope: | ne | version: | 6.0.1 | Trust: 0.3 |
EXPLOIT
Attackers may use readily available network utilities to exploit this issue.
The following exploit is available:
Bullet list:
<li><a href="/data/vulnerabilities/exploits/32560.txt">/data/vulnerabilities/exploits/32560.txt</a></li>
Trust: 0.3
PRICE
Free
Trust: 0.3
TYPE
Boundary Condition Error
Trust: 0.3
CREDITS
Blue Moon Consulting
Trust: 0.3
EXTERNAL IDS
| db: | BID | id: | 32560 | Trust: 0.3 |
REFERENCES
| url: | http://www.maxum.com/rumpus/ | Trust: 0.3 |
| url: | http://www.maxum.com/rumpus/news601.html | Trust: 0.3 |
SOURCES
| db: | BID | id: | 32560 |
LAST UPDATE DATE
2022-07-27T10:04:05.964000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 32560 | date: | 2008-12-01T23:53:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 32560 | date: | 2008-12-01T00:00:00 |