Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> FTP >> Golden FTP Server <= 2.60 Information Disclosure Vulnerabilities


Vulnerability Assessment Details

Golden FTP Server <= 2.60 Information Disclosure Vulnerabilities

Vulnerability Assessment Summary
Checks for information disclosure vulnerabilities in Golden FTP Server <= 2.60

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote FTP server is affected by information disclosure flaws.

Description :

The version of Golden FTP Server installed on the remote host is prone
to multiple information disclosure vulnerabilities. Specifically, an
attacker can list the contents of the application directory, which
provides a list of valid users, and learn the absolute path of any
shared directories.

Solution :

Upgrade to Golden FTP Server 2.70 or later.

Network Security Threat Level:

Low / CVSS Base Score : 2
(AV:R/AC:L/Au:R/C:P/A:N/I:N/B:C)

Networks Security ID: 14124

Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2007 Tenable Network Security

Cables, Connectors

Apple Macintosh PowerBook 170 Vintage Laptop
$45.0
Apple Macintosh PowerBook 170 Vintage Laptop pictureSkin Decal Wrap for ASUS Chromebook 13.3" cover sticker Vintage Swirls
$18.99
Skin Decal Wrap for ASUS Chromebook 13.3CPU Processor Intel Pentium 133MHz BP80502133 SU073 Vintage TEST OK
$14.0
CPU Processor Intel Pentium 133MHz BP80502133 SU073 Vintage TEST OK pictureCPU Processor Intel Pentium w/MMX 166MHz A80503166 SL27K Vintage TEST OK
$16.0
CPU Processor Intel Pentium w/MMX 166MHz A80503166 SL27K Vintage TEST OK picture


Discussions

No Discussions have been posted on this vulnerability.