Cerberus FTP Server < Cross-Site Request Forgery

This script is Copyright (C) 2013 Tenable Network Security, Inc.

Synopsis :

The FTP server installed on the remote Windows host has a cross-site
request forgery vulnerability.

Description :

The version of Cerberus FTP server on the remote host is earlier than As such, it is potentially affected by a cross-site request
forgery (CSRF) vulnerability that can be used to trick an authenticated
administrator into making unintended changes to the application.

See also :


Solution :

Upgrade to Cerberus FTP server or later.

Risk factor :

Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.6
Public Exploit Available : true

Family: FTP

Nessus Plugin ID: 63559 ()

Bugtraq ID: 55788

CVE ID: CVE-2012-2999