FtpLocate Multiple Scripts fsite Parameter Remote File Inclusion
High Nessus Network Monitor Plugin ID 3110
SynopsisThe remote host is vulnerable to an flaw that allows attackers to execute arbitrary commands
DescriptionThe remote host is running FtpLocate, a web search engine for FTP sites written in Perl.
The installed version of FtpLocate allows remote attackers to execute commands on the remote host by manipulating input to the 'fsite' parameter in various scripts.
SolutionNo solution is known at this time.