WU-FTPD SITE NEWER Command Memory Exhaustion DoS
Medium Nessus Plugin ID 10319
SynopsisThe remote FTP server has a denial of service vulnerability.
DescriptionThe remote WU-FTPD server accepts the command 'SITE NEWER'.
Some WU-FTPD servers (and probably others) are vulnerable to a resource exhaustion where an attacker may invoke this command to use all the memory available on the server.
SolutionMake sure that you are running the latest version of your FTP server. If you are a WU-FTPD user, then make sure that you are using at least version 2.6.0.
*** This warning may be irrelevant.