----------------------------------------------------------------------

Do you have VARM strategy implemented?

(Vulnerability Assessment Remediation Management)  

If not, then implement it through the most reliable vulnerability
intelligence source on the market. 

Implement it through Secunia. 

For more information visit:
http://secunia.com/advisories/business_solutions/

Alternatively request a call from a Secunia representative today to
discuss how we can help you with our capabilities contact us at:
sales@secunia.com

----------------------------------------------------------------------

TITLE:
Core FTP Server / SFTP Server Unexpected Disconnect Denial of Service

SECUNIA ADVISORY ID:
SA37599

VERIFY ADVISORY:
http://secunia.com/advisories/37599/

DESCRIPTION:
A vulnerability has been discovered in Core FTP Server / SFTP Server,
which can be exploited by malicious people to cause a DoS (Denial of
Service).

The vulnerability is caused due to an error when handling unexpected
disconnects. This can be exploited to cause a high CPU load until the
session times out by e.g. sending certain data to the server and then
disconnecting.

The vulnerability is reported in version Core FTP Server 1.0 Build
319 and confirmed in version Core FTP Server 1.0 Build 320. Other
versions may also be affected.

SOLUTION:
Update to version 1.0 Build 321.
http://www.coreftp.com/server/

PROVIDED AND/OR DISCOVERED BY:
Mert SARICA

ORIGINAL ADVISORY:
http://www.exploit-db.com/exploits/10303

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/advisories/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/


Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories
http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

----------------------------------------------------------------------