CVE-2004-1848

Published: Dec 31, 2004Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Ipswitch WS_FTP Server 4.0.2 allows remote attackers to cause a denial of service (disk consumption) and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file.

Affected (20)

Products: Ipswitch: Ws Ftp Server · Progress: Ws Ftp Server

1 product

1 product

Configuration A

20 vulnerable

Vulnerable Software	Affected Versions
Ipswitch Ws Ftp Server	Version 3.0_1
Ipswitch Ws Ftp Server	Version 4.01
Progress Ws Ftp Server	Version 1.0.1
Progress Ws Ftp Server	Version 1.0.2
Progress Ws Ftp Server	Version 1.0.3
Progress Ws Ftp Server	Version 1.0.4
Progress Ws Ftp Server	Version 1.0.5
Progress Ws Ftp Server	Version 2.0.1
Progress Ws Ftp Server	Version 2.0.2
Progress Ws Ftp Server	Version 2.0.3
Progress Ws Ftp Server	Version 2.0.4
Progress Ws Ftp Server	Version 2.0
Progress Ws Ftp Server	Version 3.0
Progress Ws Ftp Server	Version 3.1.1
Progress Ws Ftp Server	Version 3.1.2
Progress Ws Ftp Server	Version 3.1.3
Progress Ws Ftp Server	Version 3.1
Progress Ws Ftp Server	Version 3.4
Progress Ws Ftp Server	Version 4.0.2
Progress Ws Ftp Server	Version 4.0