Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> FTP >> FTP bounce check

Vulnerability Assessment Details

FTP bounce check
Vulnerability Assessment Summary
Checks if the remote ftp server can be bounced

Detailed Explanation for this Vulnerability Assessment

It is possible to force the FTP server to connect to third parties hosts by using
the PORT command.

This problem permits intruders to use your network resources to scan other hosts, making
them think the attack comes from your network, or it can even permit them to go through
your firewall.

Solution : Upgrade to the latest version of your FTP server, or use another FTP server.
Network Security Threat Level: Medium

Networks Security ID: 126

Vulnerability Assessment Copyright: This script is Copyright (C) 1999 Renaud Deraison
Cables, Connectors

LENOVO THINKSERVER RD640 TWO E5-2650LV2 1.70GHZ 160GB 7 X 1.6TB SSD
$7449.0		 LENOVO THINKSERVER RD640 TWO E5-2650LV2 1.70GHZ 160GB 7 X 1.6TB SSD pictureLENOVO D20 WORKSTATION E5620 2.40GHZ 8GB 1TB SATA QUADRO K4000
$1809.0		 LENOVO D20 WORKSTATION E5620 2.40GHZ 8GB 1TB SATA QUADRO K4000 picture48GB (6x8GB) PC3-10600R DDR3 ECC Memory RAM IBM ThinkStation C20 Upgrade Kit
$159.99		 48GB (6x8GB) PC3-10600R DDR3 ECC Memory RAM IBM ThinkStation C20 Upgrade Kit pictureIBM FLEX SYSTEM X240 M5 9532 TWO E5-2690V3 2.6GHZ 192GB 2 X 300GB 10K SAS
$7519.0		 IBM FLEX SYSTEM X240 M5 9532 TWO E5-2690V3 2.6GHZ 192GB 2 X 300GB 10K SAS picture


Discussions

No Discussions have been posted on this vulnerability.