Ipswitch WS_FTP Server 4.0.2 allows remote attackers to cause a denial of service (disk consumption) and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file.
2004-12-31T05:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 5.0 (MEDIUM)
AV:N/AC:L/Au:N/C:N/I:N/A:P
10.0
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | ipswitch | ws_ftp_server | 3.0_1 | Yes |
| Application | ipswitch | ws_ftp_server | 4.01 | Yes |
| Application | progress | ws_ftp_server | 1.0.1 | Yes |
| Application | progress | ws_ftp_server | 1.0.2 | Yes |
| Application | progress | ws_ftp_server | 1.0.3 | Yes |
| Application | progress | ws_ftp_server | 1.0.4 | Yes |
| Application | progress | ws_ftp_server | 1.0.5 | Yes |
| Application | progress | ws_ftp_server | 2.0 | Yes |
| Application | progress | ws_ftp_server | 2.0.1 | Yes |
| Application | progress | ws_ftp_server | 2.0.2 | Yes |
| Application | progress | ws_ftp_server | 2.0.3 | Yes |
| Application | progress | ws_ftp_server | 2.0.4 | Yes |
| Application | progress | ws_ftp_server | 3.0 | Yes |
| Application | progress | ws_ftp_server | 3.1 | Yes |
| Application | progress | ws_ftp_server | 3.1.1 | Yes |
| Application | progress | ws_ftp_server | 3.1.2 | Yes |
| Application | progress | ws_ftp_server | 3.1.3 | Yes |
| Application | progress | ws_ftp_server | 3.4 | Yes |
| Application | progress | ws_ftp_server | 4.0 | Yes |
| Application | progress | ws_ftp_server | 4.0.2 | Yes |