|
Family: FTP --> Category: mixed
proftpd mkdir buffer overflow Vulnerability Scan
Vulnerability Scan Summary Checks if the remote ftp can be buffer overflown
Detailed Explanation for this Vulnerability Test
It was possible to make the remote FTP server crash
by creating a huge directory structure with
directory names not being longer than 255 chars.
This is usually called the 'proftpd buffer overflow'
even though it affects other FTP servers.
It is very likely that a possible hacker can use this
flaw to execute arbitrary code on the remote
server. This will give him a shell on your system,
which is not a good thing.
Solution : upgrade your FTP server.
Consider removing directories writable by 'anonymous'.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|