Ipswitch WS_FTP Server 4.0.2 allows remote attackers to cause a denial of service (disk consumption) and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Ws_ftp_server | Ipswitch | 3.0_1 (including) | 3.0_1 (including) |
| Ws_ftp_server | Ipswitch | 4.01 (including) | 4.01 (including) |
| Ws_ftp_server | Progress | 1.0.1 (including) | 1.0.1 (including) |
| Ws_ftp_server | Progress | 1.0.2 (including) | 1.0.2 (including) |
| Ws_ftp_server | Progress | 1.0.3 (including) | 1.0.3 (including) |
| Ws_ftp_server | Progress | 1.0.4 (including) | 1.0.4 (including) |
| Ws_ftp_server | Progress | 1.0.5 (including) | 1.0.5 (including) |
| Ws_ftp_server | Progress | 2.0 (including) | 2.0 (including) |
| Ws_ftp_server | Progress | 2.0.1 (including) | 2.0.1 (including) |
| Ws_ftp_server | Progress | 2.0.2 (including) | 2.0.2 (including) |
| Ws_ftp_server | Progress | 2.0.3 (including) | 2.0.3 (including) |
| Ws_ftp_server | Progress | 2.0.4 (including) | 2.0.4 (including) |
| Ws_ftp_server | Progress | 3.0 (including) | 3.0 (including) |
| Ws_ftp_server | Progress | 3.1 (including) | 3.1 (including) |
| Ws_ftp_server | Progress | 3.1.1 (including) | 3.1.1 (including) |
| Ws_ftp_server | Progress | 3.1.2 (including) | 3.1.2 (including) |
| Ws_ftp_server | Progress | 3.1.3 (including) | 3.1.3 (including) |
| Ws_ftp_server | Progress | 3.4 (including) | 3.4 (including) |
| Ws_ftp_server | Progress | 4.0 (including) | 4.0 (including) |
| Ws_ftp_server | Progress | 4.0.2 (including) | 4.0.2 (including) |