This script is Copyright (C) 2008-2014 Tenable Network Security, Inc.
The remote FTP server is prone to a cross-site request forgery attack.
The remote host is using ProFTPD, a free FTP server for Unix and
The version of ProFTPD running on the remote host splits an overly
long FTP command into a series of shorter ones and executes each in
turn. If an attacker can trick a ProFTPD administrator into accessing
a specially-formatted HTML link, arbitrary FTP commands could be
executed in the context of the affected application with the
See also :
Apply the patch included in the bug report or upgrade to the latest
version in CVS.
Risk factor :
Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.6
Public Exploit Available : true