Intrusion Prevention

FTP.RETR.PASSWD

Description

This indicates a potentially malicious attempt to obtain password information from a system running FTP service.

There exist vulnerabilities in some outdated FTP daemons which allow an attacker to obtain password file on a target machine by system misconfiguration or via a directory traversal technique.

Affected Products

Any unprotected Unix/Linux system that is connected to the Internet is vulnerable to the attack.

Impact

Information leak may assist future attacks

Recommended Actions

Apply appropriate patches or upgrade the system to the latest non-vulnerable version

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

ID	101777429
Created	Jul 30, 2006
Updated	Dec 01, 2020
Risk
CVE ID
Default Action	Unavailable
Active

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Intrusion Prevention

FTP.RETR.PASSWD

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

References

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Intrusion Prevention

FTP.RETR.PASSWD

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

References

Threat Intelligence
Center