ProFTPD < 1.3.5b / 1.3.6x < 1.3.6rc2 weak Diffie-Hellman key
Medium Nessus Plugin ID 106755
SynopsisThe remote FTP server is affected by a Denial of Service vulnerability.
DescriptionThe remote host is using ProFTPD, a free FTP server for Unix and Linux.
According to its banner, the version of ProFTPD installed on the remote host is prior to 1.3.5b or 1.3.6x prior to 1.3.6rc2 and is affected by an issue in the mod_tls module, which might cause a weaker than intended Diffie-Hellman key to be used.
SolutionUpgrade to ProFTPD version 1.3.5b / 1.3.6rc2 or later.