CVE-2002-0221

Name of the Vulnerable Software and Affected Versions Etype Eserv version 2.97

Description The issue allows remote attackers to cause a denial of service, specifically resource exhaustion, by sending a large number of PASV commands. These commands consume ports 1024 through 5000, which in turn prevents the server from accepting valid PASV commands.

Recommendations For Etype Eserv version 2.97, consider restricting the number of PASV commands that can be sent to the server to prevent resource exhaustion, or implement rate limiting on the affected ports to minimize the risk of denial of service.