Synopsis
The remote FTP Server is running with known default credentials
Description
Yak! uses the FTP protocol to transfer files. Yak! UserID and/or password may be a static value. Versions prior to 2.1.0 have known default credentials. An attacker can use this flaw to send arbitrary data to client machines.
Solution
Change the password for the default 'Yak' account.
