If so, is there a timeline for a patch to Core FTP Server?
Although it hasn't yet been exploited on Windows, it is considered a likely possibility. Beyond the usual network-level protections, what other Core FTP Server configurations might be helpful in mitigating an attack? Based on the Kaspersky exploitation write-up linked below, it sounds like connection limits and session timeouts might be effective.
Thanks!
Is Core FTP Server vulnerable to the new regreSSHion RCE?
-
- Site Admin
- Posts: 988
- Joined: Mon Mar 24, 2003 4:37 am
Re: Is Core FTP Server vulnerable to the new regreSSHion RCE?
This seems to only apply to Linux. Wouldn't be concerned until it is replicated in Windows.
CVE-2024-6387
CVE-2024-6387