FTP : FTP bounce check

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.10081

Category: FTP

Title: FTP bounce check

Summary: NOSUMMARY

Description: Description:
It is possible to force the FTP server
to connect to third parties hosts, by using the PORT command.
This problem allows intruders to use your network resources to
scan other hosts, making them think the attack comes from your
network, or it can even allow them to go through your firewall.

Solution : Upgrade to the latest version of your FTP server,
or use another FTP server.

Risk factor : Medium

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-1999-0017
Cert/CC Advisory: CA-97.27.FTP_bounce
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0017
XForce ISS Database: ftp-bounce
XForce ISS Database: ftp-privileged-port

Copyright This script is Copyright (C) 1999 Renaud Deraison

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.10081
Category:	FTP
Title:	FTP bounce check
Summary:	NOSUMMARY
Description:	Description: It is possible to force the FTP server to connect to third parties hosts, by using the PORT command. This problem allows intruders to use your network resources to scan other hosts, making them think the attack comes from your network, or it can even allow them to go through your firewall. Solution : Upgrade to the latest version of your FTP server, or use another FTP server. Risk factor : Medium
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-1999-0017 Cert/CC Advisory: CA-97.27.FTP_bounce https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0017 XForce ISS Database: ftp-bounce XForce ISS Database: ftp-privileged-port
Copyright	This script is Copyright (C) 1999 Renaud Deraison