Detections
Analytics
MS02-018: Microsoft IIS FTP Status Request DoS (uncredentialed check)
medium Nessus Plugin ID 10934
Language:
Synopsis
The remote FTP server is prone to a denial of service attack.Description
It was possible to make the remote FTP server crash by sending the command 'STAT *?AAAAA....AAAAA'.There is a bug in certain versions of Microsoft's FTP server that can be exploited in this fashion. Other FTP servers may also react adversely to such a string. An attacker may leverage this issue to crash the affected service and deny usage to legitimate users.
Solution
Microsoft has released a set of patches for IIS 4.0, 5.0, and 5.1.See Also
https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2002/ms02-018
Plugin Details
Severity: Medium
ID: 10934
File Name: msftp_dos.nasl
Version: 1.53
Type: remote
Family: FTP
Published: 4/10/2002
Updated: 4/11/2022
Configuration: Enable paranoid mode, Enable thorough checks
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.6
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P
Vulnerability Information
CPE: cpe:/o:microsoft:windows, cpe:/a:microsoft:internet_information_server
Required KB Items: Settings/ParanoidReport
Exploit Ease: No known exploits are available
Vulnerability Publication Date: 4/10/2002
Reference Information
CVE: CVE-2002-0073
BID: 4482
MSFT: MS02-018
MSKB: 319733