OpenFTPD SITE MSG FTP Command Format String
Medium Nessus Plugin ID 14179
SynopsisThe remote FTP server may be vulnerable to a format string attack.
DescriptionThe remote host is running OpenFTPD - an FTP server designed to help file sharing (aka 'warez'). Some versions of this server are vulnerable to a remote format string attack that could allow an authenticated attacker to execute arbitrary code on the remote host.
Note that Nessus did not actually check for this flaw, so this might be a false positive.
SolutionDisable the remote service.