SunFTP Directory Traversal / Overflow
High Nessus Network Monitor Plugin ID 1815
SynopsisThe remote host is vulnerable to multiple attack vectors.
DescriptionThe remote FTP server (SunFTP) allows a remote attacker to read arbitrary files on the remote host by adding a double dot in front of their name. In addition to this, it is vulnerable to a buffer overflow which may allow an attacker to execute arbitrary commands on the remote host.
SolutionThe product has been discontinued by the vendor.