| VID |
16011 |
| Severity |
30 |
| Port |
21 |
| Protocol |
TCP |
| Class |
FTP |
| Detailed Description |
The File Transfer Protocol (FTP) daemon ftpd allowed a login using any username and password.
The FTP daemon may allow attackers access to unauthorized areas of the computer and possibly add, delete, or change certain files.
* References:
http://www.iss.net/security_center/static/39.php |
| Recommendation |
Set properly the ftp server to authenticate login users with username and password.
-- OR --
Change the ftp server to another secure one |
| Related URL |
CVE-1999-0156,CVE-1999-0200 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
