Serv-U Denial Of Service And Security Bypass Vulnerabilities Network Vulnerability

Summary

Serv-U is prone to denial-of-service and security-bypass vulnerabilities. Exploiting these issues can allow attackers to create directories without having sufficient permissions, or crash the affected application, resulting in denial-of-service conditions. Versions prior to Serv-U 10.2.0.0 are vulnerable.

Solution

Updates are available. Please see the references for more information.

References

http://www.serv-u.com/
http://www.serv-u.com/releasenotes/
https://www.securityfocus.com/bid/42523

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

RhinoSoft Serv-U FTP Server TEA Decoder Remote Stack Buffer Overflow Vulnerability
FTPx Corp FTP Explorer Directory Traversal Vulnerability
Serv-U Denial of Service and Security Bypass Vulnerabilities
Trellian FTP 'PASV' Response Buffer Overflow Vulnerability
SolarFTP USER Command Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities