FreeBSD : hsftp format string vulnerabilities (316e1c9b-671c-11d8-9aad-000a95bc6fae)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Ulf Harnhammar discovered a format string bug in hsftp's file listing
code may allow a malicious server to cause arbitrary code execution by
the client.

See also :

http://www.nessus.org/u?12397868
http://www.nessus.org/u?a2865d63

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 37229 (freebsd_pkg_316e1c9b671c11d89aad000a95bc6fae.nasl)

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now