Titan FTP Server version 3.01 build 163, and possibly other versions before build 169, allows remote authenticated users to cause a denial of service (crash) by disconnecting from the system during a "LIST -L" command, which causes Titan to access an invalid socket.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| south_river_technologies | titan_ftp_server | 3.01_build_163 |
Heap-based buffer overflow in Titan FTP 3.21 and earlier allows remote attackers to cause a denial of service (crash) via a long FTP command such as (1) CWD, (2) STAT, or (3) LIST.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| south_river_technologies | titan_ftp_server | 3.10 |
| south_river_technologies | titan_ftp_server | 3.01 |
| south_river_technologies | titan_ftp_server | 2.10 |
| south_river_technologies | titan_ftp_server | 2.2 |
| south_river_technologies | titan_ftp_server | 3.21 |