Home FTP Server Multiple Vulnerabilities

This script is Copyright (C) 2005-2015 Tenable Network Security, Inc.


Synopsis :

The remote FTP server is affected by various information disclosure
issues.

Description :

The remote host appears to be running Home Ftp Server, an FTP server
application for Windows.

The installed version of Home Ftp Server by default lets authenticated
users retrieve configuration files (which contain, for example, the
names and passwords of users defined to the application) as well as
arbitrary files on the remote system.

See also :

http://www.nessus.org/u?a5e13b3f
http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0814.html

Solution :

Unknown at this time.

Risk factor :

Medium / CVSS Base Score : 4.0
(CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:N)
CVSS Temporal Score : 4.0
(CVSS2#E:H/RL:U/RC:ND)
Public Exploit Available : true

Family: FTP

Nessus Plugin ID: 19501 (home_ftp_dir_traversal.nasl)

Bugtraq ID: 14653

CVE ID: CVE-2005-2726
CVE-2005-2727

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial