This script is Copyright (C) 2006-2014 Tenable Network Security, Inc.
The remote Windows host has an application that allows arbitrary file
According to its version, the WinSCP install on the remote host allows
a remote attacker to automatically initiate a file transfer to or from
the affected host or to append log information to an existing file,
provided that the user can be tricked into clicking on a malicious
See also :
Upgrade to WinSCP version 3.8.2 or later.
Risk factor :
High / CVSS Base Score : 7.1
CVSS Temporal Score : 6.7
Public Exploit Available : true