Problem

When the service detection is enabled in the Nessus scanner a web service is detected at the port (1766 – CFT Copilot service port).

In this scenario the CFT is getting crashed. (a crash of CFTTPRO makes CFT unresponsiveness to transfer activity)

R&D confirmed that the fix should cover over vulnerability test tools.

CFT appears to be unable to respond to the Nessus crafted service detection requests.

Resolution

Nessus scan is now added in our Continuous Integration Process.

R&D confirmed that the fix should cover over vulnerability test tools.

The reported issue is fixed from 313 SP4.

Note: the SP4 makes Transfer CFT compliant to other vulnerability test tools.