Robo-FTP Pre-authentication Command Execution DoS

Medium Nessus Plugin ID 12082


The remote FTP server has a denial of service vulnerability.


The remote host seems to be running Robo-FTP.

According to its banner, this version has a denial of service vulnerability. Sending certain commands to the service before authentication has been negotiated causes the service to crash.


Upgrade to the latest version of this application.

See Also

Plugin Details

Severity: Medium

ID: 12082

File Name: robotftp.nasl

Version: $Revision: 1.11 $

Type: remote

Family: FTP

Published: 2004/02/27

Modified: 2011/03/11

Dependencies: 10092

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:U/RC:ND

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Reference Information

BID: 9729

OSVDB: 55323