ProFTPD Multiple Remote Overflows (palmetto)

This script is Copyright (C) 2000-2011 Tenable Network Security, Inc.


Synopsis :

Arbitrary code may be run on the remote server.

Description :

The remote ProFTPd server is running a 1.2.0preN version.

All the 1.2.0preN versions contain several security flaws that allow an
attacker to execute arbitrary code on this host.

Solution :

Upgrade to a fixed FTP server - http://www.proftpd.net

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 9.5
(CVSS2#E:F/RL:U/RC:ND)

Family: FTP

Nessus Plugin ID: 10464 ()

Bugtraq ID: 2242

CVE ID: CVE-1999-0368