Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Nessus>
  3. plugins
EFTP PASV denial of service
arboi at noos
Aug 14, 2002, 12:16 PM
Post #1 of 4 (815 views)
Permalink
Old versions of EFTP are vulnerable to "PASV flood". I did not really
test this script, I do not have an old EFTP...

Attached Files:

Re: EFTP PASV denial of service [ In reply to ]
deraison at nessus
Aug 15, 2002, 6:11 AM
Post #2 of 4 (793 views)
Permalink
On Wed, Aug 14, 2002 at 09:16:36PM +0200, Michel Arboi wrote:
> Old versions of EFTP are vulnerable to "PASV flood". I did not really
> test this script, I do not have an old EFTP...

This is redundant with ftp_pasv_dos.nasl
Re: EFTP PASV denial of service [ In reply to ]
arboi at noos
Aug 15, 2002, 7:47 AM
Post #3 of 4 (797 views)
Permalink
Renaud Deraison <deraison@nessus.org> writes:

> This is redundant with ftp_pasv_dos.nasl

I did not see it. And ftp_pasv_dos.nasl looks much better: safer (no
DoS) and quicker.
Re: EFTP PASV denial of service [ In reply to ]
scheidell at secnap
Aug 15, 2002, 7:50 AM
Post #4 of 4 (794 views)
Permalink
> Renaud Deraison <deraison@nessus.org> writes:
>
> > This is redundant with ftp_pasv_dos.nasl
>
> I did not see it. And ftp_pasv_dos.nasl looks much better: safer (no
> DoS) and quicker.
>
could add the dos one in the if (!(safe_checks()) area.

--
Michael Scheidell, CEO
SECNAP Network Security, LLC
Sales: 866-SECNAPNET / (1-866-732-6276)
Main: 561-368-9561 / www.secnap.net
Looking for a career in Internet security?
http://www.secnap.net/employment/

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal