WU-FTPD QUOTE PASV Forced Core Dump Information Disclosure
Medium Nessus Plugin ID 10086
SynopsisThe remote FTP server is affected by an information disclosure vulnerability.
DescriptionThe remote FTP server fails to handle QUOTE PASV requests for logged in users. An attacker can send a specially crafted requests to cause the service to die and dump core. The core file contains the usernames and passwords of all users.
SolutionUpgrade your FTP server to the latest version.