FTP Attack - Successful SITE EXEC Command
High Nessus Network Monitor Plugin ID 6217
SynopsisAn FTP user issued a successful SITE EXEC command.
DescriptionAn FTP user issued a successful SITE EXEC command. The SITE EXEC command is often attempted by remote hackers to run UNIX and Windows commands directly on the FTP server. This PVS rule detects a successful command execution, not an attempt.
SolutionDisable the FTP service or restrict access to it.