一个FTP漏洞服的入侵方案
首先经过xscan的扫描结果为漏洞ftp (21/tcp)The remote FTP server closes远程服FTP务器终止
the connection when a command is too long or is given
a too long argument.
This probably due to a buffer overflow, which
allows anyone to execute arbitrary code
on the remote host.
This problem is threatening, because
the attackers don't need an account
to exploit this flaw.
Solution : Upgrade your FTP server or change it
Risk factor : High
CVE_ID : CAN-2000-0133, CVE-2000-0943, CAN-2002-0126, CVE-2000-0870, CVE-2000-1035, CVE-2000-1194, CAN-2000-1035
BUGTRAQ_ID : 961, 1858, 3884, 7251, 7278, 7307
NESSUS_ID : 10084
提示ftp (21/tcp)A FTP server is running on this port.
Here is its banner :
220 Serv-U FTP Server v6.0 for WinSock ready...
NESSUS_ID : 10330
提示ftp (21/tcp)Remote FTP server banner :
220 Serv-U FTP Server v6.0 for WinSock ready...
NESSUS_ID : 10092
页:
[1]