This script is Copyright (C) 2009-2012 Tenable Network Security, Inc.
The remote FTP server is affected by multiple vulnerabilities.
According to its banner, the remote host is running a version of
WS_FTP earlier than 6.1.1. Such versions are reportedly affected by
multiple vulnerabilities :
- Improper handling of UDP packets within the FTP log
server may allow an attacker to crash the affected
- There is a buffer overflow vulnerability in the SSH
Server service that can be triggered when handling
arguments to the 'opendir' command. (CVE-2008-0590)
- An attacker can exploit a vulnerability in the
'FTPLogServer/LogViewer.asp' script to gain access to
the log viewing interface. (CVE-2008-5692)
See also :
Upgrade to WS_FTP Server 6.1.1 or later.
Risk factor :
High / CVSS Base Score : 9.0
CVSS Temporal Score : 7.0
Public Exploit Available : true
Nessus Plugin ID: 40772 ()
Bugtraq ID: 275732761227654
CVE ID: CVE-2008-0590CVE-2008-0608CVE-2008-5692CVE-2008-5693
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.