|
|
Family: FTP --> Category: infos
ArGoSoft FTP Server < 1.4.2.8 Multiple Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Gets the version of the remote ArGoSoft server
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote FTP server is susceptible to several file access attacks.
Description :
The remote host is running the ArGoSoft FTP Server.
It is reported that ArGoSoft FTP Server allows a possible hacker to upload
shortcut (.LNK) files via either a 'SITE UNZIP' or 'SITE COPY' command
and gain read and write access to any files and directories on the FTP
server.
See also :
http://www.argosoft.com/ftpserver/changelist.aspx
Solution :
Upgrade to ArGoSoft FTP 1.4.2.8 or later.
Threat Level:
Critical / CVSS Base Score : 10.0
(AV:R/AC:L/Au:NR/C:C/I:C/A:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
