CVE-2003-1329

ftpd.c in wu-ftpd 2.6.2, when running on "operating systems that only allow one non-connected socket bound to the same local address," does not close failed connections, which allows remote attackers to cause a denial of service.

Published: Dec 31, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-1329
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
washington_university / wu-ftpd	2.6.2	2.6.2.x

ftp://ftp.wu-ftpd.org/pub/wu-ftpd/patches/apply_to_2.6.2/connect-dos.patch
http://www.osvdb.org/34670

Vulnerability Database

289,599

CVE-2003-1329