CVE-2004-1848

Name of the Vulnerable Software and Affected Versions Ipswitch WS FTP Server version 4.0.2

Description The issue allows remote attackers to cause a denial of service (disk consumption) and bypass file size restrictions via a REST command with a large size argument, followed by a STOR of a smaller file.

Recommendations For Ipswitch WS FTP Server version 4.0.2, consider restricting access to the REST command and the STOR command to minimize the risk of exploitation until a patch is available. As a temporary workaround, monitor disk space consumption closely to prevent denial of service.