Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: FTP --> Category: attack

proftpd exhaustion attack Vulnerability Scan

Vulnerability Scan Summary
Checks if the version of the remote proftpd

Detailed Explanation for this Vulnerability Test

The remote FTP server seems to be vulnerable to an exhaustion
attack which may makes it consume all available memory on the remote
host when it receives the command :

NLST /../*/../*/../*/../*/../*/../*/../*/../*/../*/../

Solution : upgrade to ProFTPd 1.2.2 and modify your configuration
file to include :
DenyFilter \*.*/

If you use another FTP server, contact your vendor.

Reference :

Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.