FTP Server root Directory .forward File Present

medium Nessus Plugin ID 11565

Language:

Synopsis

The remote FTP server is affected by an information disclosure vulnerability.

Description

The remote anonymous FTP server has a .forward file set in its home.
An attacker may use it to determine who is in charge of the FTP server and set up a social engineering attack.

Solution

Remove the .forward file.

Plugin Details

Severity: Medium

ID: 11565

File Name: ftp_forward.nasl

Version: Revision: 1.18

Type: remote

Family: FTP

Published: 5/4/2003

Updated: 12/23/2014

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Information

Excluded KB Items: global_settings/supplied_logins_only

Detections

Analytics