|
Family: FTP --> Category: attack
proftpd exhaustion attack Vulnerability Scan
Vulnerability Scan Summary Checks if the version of the remote proftpd
Detailed Explanation for this Vulnerability Test
The remote FTP server seems to be vulnerable to an exhaustion
attack which may makes it consume all available memory on the remote
host when it receives the command :
NLST /../*/../*/../*/../*/../*/../*/../*/../*/../*/../
Solution : upgrade to ProFTPd 1.2.2 and modify your configuration
file to include :
DenyFilter \*.*/
If you use another FTP server, contact your vendor.
Reference : http://online.securityfocus.com/archive/1/169069
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|