Vulnerability ftp (21/tcp)
You seem to be running an FTP server which is vulnerable to the 'glob heap corruption' flaw. An attacker may use this problem to execute arbitrary commands on this host. *** Nessus relied solely on the banner of the server to issue this warning, *** so this alert might be a false positive *** NOTE: must have a valid username/password to fully check this vulnerability Solution : Upgrade your ftp server software to the latest version. Risk factor : High CVE : CVE-2001-0249 <http://cgi.nessus.org/cve.php3?cve=CVE-2001-0249> , CVE-2001-0550 <http://cgi.nessus.org/cve.php3?cve=CVE-2001-0550> BID : 2550 <http://cgi.nessus.org/bid.php3?bid=2550> , 3581 <http://cgi.nessus.org/bid.php3?bid=3581> Other references : IAVA:2001-b-0004, OSVDB:686, OSVDB:8681 Nessus ID : 10821 <http://cgi.nessus.org/nessus_id.php3?id=10821> I have safe checks enabled and I do not believe that I have Paranoid configured either. _________________________________________________ Mark Timm Information Security P.O. Box 10001 Dallas, TX 75301-8301 Business Office: 6501 Legacy Drive MS 8301 Plano TX 75024-3698 Tel: 972-431-8953 FAX: 972-531-8953 [EMAIL PROTECTED]
The information transmitted is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. If the reader of this message is not the intended recipient, you are hereby notified that your access is unauthorized, and any review, dissemination, distribution or copying of this message including any attachments is strictly prohibited. If you are not the intended recipient, please contact the sender and delete the material from any computer.
_______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
