FTP Attack - Passive Port Scan

High Nessus Network Monitor Plugin ID 6216

Synopsis

An FTP user issued a successful passive port request which enumerated a port less than 1024, and other than 21 or 20.

Description

An FTP user issued a successful passive port request which enumerated a port less than 1024, and other than 21 or 20. This may indicate that your FTP server is being used for port scanning by hackers who wish to hide their identity or possibly mail spammers who are looking for open port 25 devices.

Solution

Inspect and repair this vulnerability

Plugin Details

Severity: High

ID: 6216

Family: Generic

Published: 2012/01/06

Modified: 2015/06/01

Dependencies: 1803, 1804

Risk Information

Risk Factor: High