Serv-U 'SITE SET TRANSFERPROGRESS ON' Command Remote Denial Of Service Vulnerability Network Vulnerability

Summary

Serv-U is prone to a remote denial-of-service vulnerability. Successfully exploiting this issue will allow attackers to deny service to legitimate users. Serv-U 7.0.0.1 through 8.2.0.3 are vulnerable other versions may also be affected.

Solution

The vendor has released an update. Please see the references for details.

References

http://www.securityfocus.com/bid/36585
http://www.serv-u.com/
http://www.serv-u.com/releasenotes/

Updated on 2015-03-25

Severity

Classification

CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

GuildFTPd Directory Traversal
FileCOPA FTP Server Multiple Directory Traversal Vulnerabilities
TYPSoft FTP Server RETR CMD Denial Of Service Vulnerability
FileCopa FTP Server 'NOOP' Command DoS Vulnerability
Wing FTP Server Versions Prior to 3.4.1 Multiple Information Disclosure Vulnerabilities

Serv-U 'SITE SET TRANSFERPROGRESS ON' Command Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities