FTP: ProFTPD USER DoS
This signature detects attempts to exploit a known vulnerability in ProFTPD. Versions 1.2.0rc* and 1.2.0pre* are vulnerable. Attackers can send a maliciously crafted USER command to create a denial-of-service (DoS) condition.
Extended Description
A memory leak has been reported in all versions of ProFTPd. The USER FTP command causes the server to misallocate and leak small amounts of memory each time the command is executed. If a sufficient number of these commands are executed by the server, substantial amounts of system memory can be consumed, allowing a remote attacker to carry out a denial of service attack on the affected host. This could be problematic if anonymous FTP is enabled or if a malicious local user has been supplied with an FTP login ID.
Affected Products
Proftpd_project proftpd
Short Name
FTP:PROFTP:USER-DOS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
FTP
Keywords
CVE-2001-0136 DoS ProFTPD USER bid:2366
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Proftpd_project
CVSS Score
5.0