smallftpd 1.0.3 Multiple DoS

Medium Nessus Plugin ID 12072


The remote FTP server is affected by multiple vulnerabilities.


The remote host seems to be running a version of Smallftpd that is 1.0.3 or earlier. Such versions are reportedly affected by denial of service and directory traversal vulnerabilities.


Either disable the service or switch to a different FTP server as Smallftpd has not been updated since 2004.

Plugin Details

Severity: Medium

ID: 12072

File Name: smallftpd_1_0_3.nasl

Version: $Revision: 1.18 $

Type: remote

Family: FTP

Published: 2004/02/22

Modified: 2013/04/04

Dependencies: 10092

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:U/RC:ND

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2004/02/17

Reference Information

CVE: CVE-2004-0299

BID: 9684, 40180, 48453, 58856

OSVDB: 4001, 68959

EDB-ID: 15358