CVE-2009-4048

Name of the Vulnerable Software and Affected Versions Dxmsoft XM Easy Personal FTP Server version 5.8.0

Description The issue allows remote authenticated users to cause a denial of service, resulting in a daemon outage. This can be achieved by sending an APPE command to one socket in conjunction with a DELE command to a second socket.

Recommendations For Dxmsoft XM Easy Personal FTP Server version 5.8.0, consider restricting access to the APPE and DELE commands until a patch is available. As a temporary workaround, limiting the number of concurrent connections or implementing rate limiting on these commands may help minimize the risk of exploitation.