Anonymous FTP Writeable root Directory

This script is Copyright (C) 1999-2012 Tenable Network Security, Inc.


Synopsis :

The remote FTP server allows write access to the root directory.

Description :

It is possible to write on the root directory of this remote anonymous
FTP server. This allows an attacker to upload arbitrary files which
could be used in other attacks, or to turn the FTP server into a
software distribution point.

Solution :

Restrict write access to the root directory.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: FTP

Nessus Plugin ID: 10088 (ftp_root.nasl)

Bugtraq ID:

CVE ID: CVE-1999-0527