This script is Copyright (C) 1999-2013 Tenable Network Security, Inc.
The remote FTP server is affected by an information disclosure
It is possible to determine the full path of the home directory of
the 'ftp' user by issuing the 'CWD' command. An attacker can exploit
this to determine where to put a .rhost file using other security
See also :
Apply the latest patches from your vendor.
Risk factor :
Medium / CVSS Base Score : 6.4
Nessus Plugin ID: 10087 (ftp_realpath.nasl)
CVE ID: CVE-1999-0201