Kibuv Worm Detection

Critical Nessus Plugin ID 18367


The remote host may be compromised.


The welcome message on this port matches the banner of a known backdoor. This is highly suspicious. The host is probably infected by a backdoor and is probably under the control of malicious attackers.


Patch the affected system and run an antivirus.

See Also

Plugin Details

Severity: Critical

ID: 18367

File Name: ftp_kibuv_worm.nasl

Version: Revision: 1.19

Type: remote

Family: Backdoors

Published: 2005/05/25

Updated: 2013/01/25

Dependencies: 17975

Risk Information

Risk Factor: Critical

CVSS v2.0

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C