|
Family: FTP --> Category: infos
FTPd tells if a user exists Vulnerability Scan
Vulnerability Scan Summary CWD ~root
Detailed Explanation for this Vulnerability Test
It is possible to acertain the existence of a user on the remote
system by issuing the command CWD ~, like :
CWD ~root
A possible hacker may use this to acertain the existence of known to be
vulnerable accounts (like guest) or to acertain which system you
are running.
Solution : inform your vendor, and ask for a patch, or change your FTP server
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.
|