Hugh Mann

**Name of the Vulnerable Software and Affected Versions** Ipswitch WS FTP Server version 4.0.2 **Description** The issue allows remote attackers to cause a denial of service (disk consumption) and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file. **Recommendations** For Ipswitch WS FTP Server version 4.0.2, consider restricting access to the REST command and the STOR command to minimize the risk of exploitation until a patch is available. As a temporary workaround, monitor disk space consumption closely to prevent denial of service.

**Name of the Vulnerable Software and Affected Versions** Ipswitch WS FTP Server version 4.0.2 **Description** The issue involves multiple buffer overflows that allow remote authenticated users to execute arbitrary code. This can be achieved by causing a large error string to be generated by the ALLO handler or by inserting a long hostname or username into a reply to a STAT command while a file is being transferred. **Recommendations** For Ipswitch WS FTP Server version 4.0.2, consider disabling the ALLO handler and restricting access to the STAT command as temporary workarounds until a patch is available. Restrict access to the server to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Ipswitch WS FTP Server version 4.0.2 **Description** The issue allows remote attackers to gain access due to a backdoor with the `XXSESS MGRYY` username that has a default password. **Recommendations** For Ipswitch WS FTP Server version 4.0.2, change the default password of the `XXSESS MGRYY` username to prevent unauthorized access.