Intrusion Prevention

TYPSoft.FTP.Server.APPE.and.DELE.Commands.DoS

Description

This indicates an attempt to exploit a Denial of Service vulnerability in Microsoft Windows.
The vulnerability is due to a logic error when handing consecutive ICMP packets of a certain type. As a result a malicious remote user can cause a system crash.

Affected Products

TYPSoft TYPSoft FTP Server 1.10
TYPSoft TYPSoft FTP Server 1.1
TYPSoft TYPSoft FTP Server 1.0 9
TYPSoft TYPSoft FTP Server 1.0 8
TYPSoft TYPSoft FTP Server 1.0 7
TYPSoft TYPSoft FTP Server 1.0 6
TYPSoft TYPSoft FTP Server 1.0 5
TYPSoft TYPSoft FTP Server 1.0 4
TYPSoft TYPSoft FTP Server 1.0 3
TYPSoft TYPSoft FTP Server 1.0 2
TYPSoft TYPSoft FTP Server 1.0 1
TYPSoft TYPSoft FTP Server 1.0 0
TYPSoft TYPSoft FTP Server 0.99.6
TYPSoft TYPSoft FTP Server 0.97.5
TYPSoft TYPSoft FTP Server 0.97
TYPSoft TYPSoft FTP Server 0.96
TYPSoft TYPSoft FTP Server 0.95
TYPSoft TYPSoft FTP Server 0.93
TYPSoft TYPSoft FTP Server 0.85

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Upgrade to the latest version, available from the website:
http://www.softpedia.com/get/Internet/Servers/FTP-Servers/TYPSoft-FTP-Server.shtml

CVE References

CVE-2009-4105