Detections
Analytics
FTP Service AUTH TLS Plaintext Command Injection
medium Nessus Plugin ID 53847
Language:
Synopsis
The remote FTP server allows plaintext command injection while negotiating an encrypted communications channel.Description
The remote FTP server contains a software flaw in its AUTH TLS implementation that could allow a remote, unauthenticated attacker to inject commands during the plaintext protocol phase that will be executed during the ciphertext protocol phase.Successful exploitation could permit an attacker to modify files on the FTP server and reveal a user's credentials.
Solution
Contact the vendor to see if an update is available.See Also
https://tools.ietf.org/html/rfc4217
https://www.securityfocus.com/archive/1/516901/30/0/threaded
Plugin Details
Severity: Medium
ID: 53847
File Name: ftp_starttls_plaintext_injection.nasl
Version: 1.16
Type: remote
Family: FTP
Published: 5/9/2011
Updated: 1/16/2024
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 2.5
CVSS v2
Risk Factor: Medium
Base Score: 5.8
Temporal Score: 4.3
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N
CVSS Score Source: CVE-2011-1575
CVSS v3
Risk Factor: Medium
Base Score: 6.5
Temporal Score: 5.7
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
Exploit Ease: No known exploits are available
Vulnerability Publication Date: 3/7/2011
Reference Information
CVE: CVE-2011-1575
BID: 46767
CERT: 555316