Short Name |
FTP:MS-FTP:MAL-CHARS-FTP-REQ |
---|---|
Severity |
Minor |
Recommended |
No |
Recommended Action |
Drop |
Category |
FTP |
Keywords |
Malicious Characters In FTP Request Detected |
Release Date |
2010/12/22 |
Update Number |
1837 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a remote FTP server. Attacker can send malformed characters in FTP request. A successful attack can lead to arbitrary remote code execution within the context of the server or denial of service condition.
Microsoft IIS is prone to a buffer-overflow vulnerability affecting the application's FTP service. Successful exploits may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will likely crash the FTP service, resulting in denial-of-service conditions. IIS 7.5 is vulnerable; other versions may also be affected.