|
|
Family: FTP --> Category: infos
proftpd mod_sql injection Vulnerability Scan
Vulnerability Scan Summary
Performs a SQL insertion
Detailed Explanation for this Vulnerability Test
The remote FTP server is vulnerable to a SQL injection when
it processes the USER command.
A possible hacker may exploit this flaw to log into the remote host
as any user.
Solution : If the remote server is ProFTPd, upgrade to ProFTPD 1.2.10 when
available, or switch the SQL backend to PostgreSQL.
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
