论坛: 菜鸟乐园 标题: 发现三个漏洞,分别是FTP及POP3的 复制本贴地址    
作者: august258 [august258]    论坛用户   登录
我在扫描一台主机时提示有三个漏洞,请问该是什么意思,如何具体利用这些漏洞,多谢!
漏洞 ftp (21/tcp) The remote host is running a version of ProFTPd which seemsto be vulnerable to a buffer overflow when a user downloadsa malformed ASCII file.An attacker with upload privileges on this host may abuse thisflaw to gain a root shell on this host.*** The author of ProFTPD did not increase the version number*** of his product when fixing this issue, so it might be false*** positive.Solution : Upgrade to ProFTPD 1.2.9 when available or to 1.2.8pRisk Factor : HighBUGTRAQ_ID : 8679NESSUS_ID : 11849
漏洞 ftp (21/tcp) The remote FTP server closesthe connection when a command is too long or is givena too long argument. This probably due to a buffer overflow, whichallows anyone to execute arbitrary codeon the remote host.This problem is threatening, becausethe attackers don't need an account to exploit this flaw.Solution : Upgrade your FTP server or change itRisk factor : HighCVE_ID : CAN-2000-0133, CVE-2000-0943, CAN-2002-0126, CVE-2000-0870, CAN-2000-1035, CAN-2000-1194, CAN-2000-1035BUGTRAQ_ID : 961, 1858, 3884, 7251, 7278, 7307NESSUS_ID : 10084
漏洞 pop3 (110/tcp) The remote POP3 server might be vulnerable to a buffer overflow bug when it is issued at least one of these commands, with a too long argument :authuserpassIf confirmed, this problem might allow an attacker to executearbitrary code on the remote system, thus giving him an interactivesession on this host.Solution : If you do not use POP3, disable this service in /etc/inetd.confand restart the inetd process. Otherwise, upgrade to a newer version.See also : http://online.securityfocus.com/archive/1/27197Risk factor : HighCVE_ID : CAN-2002-0799, CAN-1999-0822BUGTRAQ_ID : 789, 790, 830, 894, 942, 1965, 2781, 2811, 4055, 4295, 4614NESSUS_ID : 10184

地主 发表时间: 04-08-29 23:02

论坛: 菜鸟乐园

20CN网络安全小组版权所有
Copyright © 2000-2010 20CN Security Group. All Rights Reserved.
论坛程序编写:NetDemon

粤ICP备05087286号