Summary
Serv-U is prone to multiple security vulnerabilities including security- bypass issues and a denial-of-service issue.
Attackers can exploit this issue to bypass certain security restrictions or crash the affected application.
Versions prior to Serv-U 9.4.0.0 are vulnerable.
Solution
The vendor has released an update. Please see the references for details.
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Open-FTPD Authentication Bypass Vulnerability
- FTPx Corp FTP Explorer Directory Traversal Vulnerability
- Open and Compact FTPD Auth Bypass and Directory Traversal Vulnerabilities
- FTPGetter 'PASV' Command Remote Stack Buffer Overflow Vulnerability
- RhinoSoft Serv-U FTP Server TEA Decoder Remote Stack Buffer Overflow Vulnerability