False positives against Microsoft Windows NT FTP Server?

Thu, 12 Sep 2002 10:56:57 -0700 

The following issues were reported by the latest Nessus and plugins against
a Windows NT 4.0 Server running the normal IIS FTP Server.  The FTP server
did not crash or stop functioning, and the descriptions of each item only
indicate that it is a problem with various non-Microsoft FTP Servers.  Thus,
I assume that these are all false positives, but just wanted to verify
that's the case before I ignored them...  (Thanks!)


 . Vulnerability found on port ftp (21/tcp) : 

    The remote FTP server closes
    the connection when one of the commands
    USER, PASS or HELP is given with a too 
    long argument. 
    
    This probably due to a buffer overflow, which
    allows anyone to execute arbitrary code
    on the remote host.
    
    This problem is threatening, because
    the attackers don't need an account 
    to exploit this flaw.
    
    Solution : Upgrade your FTP server or change it
    Risk factor : High

 . Vulnerability found on port ftp (21/tcp) : 
    
    It was possible to make the remote FTP server
    crash by issuing this command :
    
     CEL aaaa[...]aaaa
     
    This problem is known has the 'aix ftpd' overflow and
    may allow the remote user to gain root easily.
    
    Solution : if you are using AIX ftpd, then read
    IBM's advisory number ERS-SVA-E01-1999:004.1,
    or else contact your vendor for a patch.
    
    Risk factor : High
    CVE : CVE-1999-0789

 . Vulnerability found on port ftp (21/tcp) : 
    
    It was possible to make the remote FTP server
    crash by issuing this command :
    
     NLST aaaXXXX%u%[...]%u%u%u%%u%653300u%n
     
    Where XXXX have ascii values 0xDC, 0x4F, 0x07 and 0x08.
    
    This problem is known has the 'proftpd pre6' overflow and
    may allow the remote user to gain root easily.
    
    Solution : if you are using proftpd, then upgrade
    to proftpd 1.2.0pre7. If you are using something else,
    then upgrade or contact your vendor.
    
    Risk factor : High

 . Warning found on port ftp (21/tcp)

    It was possible to
    shut down the remote FTP server by issuing
    a CWD command followed by a too long
    argument.
    
    This problem allows an attacker to prevent
    your site from sharing some resources
    with the rest of the world.
    
    Solution : upgrade to the latest version your FTP server.
    
    Risk factor : Medium
    CVE : CVE-1999-0219

-
[EMAIL PROTECTED]: general discussions about Nessus.
* To unsubscribe, send a mail to [EMAIL PROTECTED] with
"unsubscribe nessus" in the body.

Reply via email to