FileZilla Server < 0.9.31 Denial of Service

This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.


Synopsis :

The remote FTP server is prone to a denial of service attack.

Description :

According to its banner, the version of FileZilla Server installed on
the remote host is older than version 0.9.31. An unspecified
vulnerability in the SSL code for such versions can be exploited by a
remote attacker to trigger a denial of service condition.

See also :

http://sourceforge.net/project/shownotes.php?release_id=665428

Solution :

Upgrade to FileZilla Server version 0.9.31 or later.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.3
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 45112 (filezilla_server_0931.nasl)

Bugtraq ID: 34006

CVE ID: CVE-2009-0884

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now