Summary
According to its version number, the remote WS_FTP server is vulnerable to session hijacking during passive connections and to a FTP bounce attack when a user submits a specially crafted FTP command.
OVS only checked the version number in the server banner
Solution
Upgrade to the latest version of this software
Severity
Classification
-
CVE CVE-1999-0017 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities