virus logo Intrusion Prevention

Vsftpd.Backdoor.Command.Execution

description-logoDescription

This indicates an attack attempt to exploit a Backdoor vulnerability in vsftpd v2.3.4.
This backdoor was introduced into the vsftpd-2.3.4.tar.gz archive between June 30th 2011 and July 1st 2011 according to the most recent information available. This backdoor was removed on July 3rd 2011.It allows remote attacks to execute arbitrary PHP code on the system by sending a connection request on TCP port 6200.

affected-products-logoAffected Products

vsftpd-2.3.4.tar.gz

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the website:
https://security.appspot.com/vsftpd.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 28241
Created Oct 13, 2011
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Linux
Affected App Other