FileZilla FTP Client < 2.2.32 Multiple Format Strings

This script is Copyright (C) 2007-2016 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has an application that is affected by
multiple format string vulnerabilities.

Description :

According to its version, the FileZilla FTP client installed on the
remote host is affected by multiple format string vulnerabilities.
Details on the issues are not currently available, but it is expected
that exploitation would require a user visit a malicious FTP site
using the affected software.

See also :

http://sourceforge.net/projects/filezilla/

Solution :

Upgrade to FileZilla client version 2.2.32 or later.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 25039 (filezilla_2232.nasl)

Bugtraq ID: 23506

CVE ID: CVE-2007-2318

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now