ProFTPD Auth API Multiple Auth Module Authentication Bypass
Medium Nessus Plugin ID 25040
SynopsisIt is possible to bypass the authentication scheme of the remote FTP server.
DescriptionThe remote host is running ProFTPd. Due to a bug in the way the remote server is configured and the way it processes the USER and PASS commands, it is possible to log into the remote system by supplying invalid credentials.
SolutionUpgrade to the latest (CVS) version of this software.