FTP : FTP bounce check

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.10081

Categoría: FTP

Título: FTP bounce check

Resumen: NOSUMMARY

Descripción: Description:
It is possible to force the FTP server
to connect to third parties hosts, by using the PORT command.
This problem allows intruders to use your network resources to
scan other hosts, making them think the attack comes from your
network, or it can even allow them to go through your firewall.

Solution : Upgrade to the latest version of your FTP server,
or use another FTP server.

Risk factor : Medium

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-1999-0017
Cert/CC Advisory: CA-97.27.FTP_bounce
XForce ISS Database: ftp-bounce
XForce ISS Database: ftp-privileged-port

Copyright This script is Copyright (C) 1999 Renaud Deraison

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.10081
Categoría:	FTP
Título:	FTP bounce check
Resumen:	NOSUMMARY
Descripción:	Description: It is possible to force the FTP server to connect to third parties hosts, by using the PORT command. This problem allows intruders to use your network resources to scan other hosts, making them think the attack comes from your network, or it can even allow them to go through your firewall. Solution : Upgrade to the latest version of your FTP server, or use another FTP server. Risk factor : Medium
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-1999-0017 Cert/CC Advisory: CA-97.27.FTP_bounce XForce ISS Database: ftp-bounce XForce ISS Database: ftp-privileged-port
Copyright	This script is Copyright (C) 1999 Renaud Deraison