On Fri, Feb 27, 2004 at 06:05:07PM +0100, Audun Larsen wrote:
>
> This plugin will see if RobotFTP is installed on the remote host.
> Since RobotFTP does not display the version number in the banner, it
> will just give an alert no matter what version that is installed.
>
> If safe checks is disabled it will try to crash the server. If it is
> vulnerable it will crash,
> But the server will continue to work. It is therefore hard to tell if
> the host really is vulnerable, without checking if an error has
> appeard on the screen.
Does it drop the connection ?
ie: if you send the poison string, then send a HELP command, do you get
any output ?
Could you try the following code ?
data = string("\x4C\x49\x53\x54\r\n");
send(socket:soc, data:data);
send(socket:soc, data:'HELP\r\n');
r = ftp_recv_line(socket:soc);
if ( ! r ) security_warning ( port ) ; # Success
Thanks,
-- Renaud
_______________________________________________
Plugins-writers mailing list
Plugins-writers@private
http://mail.nessus.org/mailman/listinfo/plugins-writers
This archive was generated by hypermail 2b30 : Fri Feb 27 2004 - 09:18:21 PST