On Dec 30, 2008, at 6:17 PM, YARICK wrote: > List, can anybody confirm 2.5n is in fact vulnerable ?
According to the first link referenced in the plugin, which points to a Bugtraq posting, all versions prior to 4.2 are affected by the overflow involving the "SITE CHMOD" command. Alternatively, if you are working in a lab or willing to risk crashing the particular service, you could supply valid credentials and disable safe checks when running a scan with the plugin in question. George -- the...@tenablesecurity.com _______________________________________________ Nessus mailing list Nessus@list.nessus.org http://mail.nessus.org/mailman/listinfo/nessus