Search

published date: September 22, 2003

CVE-2003-0772 : Denial of Service Vulnerability

Description

Multiple buffer overflows in WS_FTP 3 and 4 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via long (1) APPE (append) or (2) STAT (status) arguments.

Product(s):

  • Ipswitch WS FTP Server 4.01
  • Progress WS_FTP Server 3.4

Question to Ask Vendors:

  1. Can you confirm whether your systems are affected by CVE-2003-0772, and if so, what steps are you currently taking to mitigate this vulnerability?
  2. What is your estimated timeline for fully resolving CVE-2003-0772 in your products or services, and how will you communicate updates on this issue to us as your customer?

READY TO GET RESULTS YOU CAN TRUST?