Summary
The host is running RhinoSoft Serv-U SFTP, which is prone to denial of service vulnerability.
Impact
Remote exploitation will allow attackers to cause the server crash or denying the service.
Impact Level : Application
Solution
Update to version 7.2.0.1.
http://www.serv-u.com/dn.asp
Insight
The flaw is due to an error within the logging functionality, when creating directories via SFTP or when handling certain SFTP commands.
Affected
RhinoSoft Serv-U versions prior to 7.2.0.1 on Windows (All).
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2008-3731 -
CVSS Base Score: 4.0
AV:N/AC:L/Au:S/C:N/I:N/A:P
Related Vulnerabilities
- AyeView GIF Image Handling Denial of Service Vulnerability
- CUPS Denial of Service Vulnerability - Jun09
- Firebird SQL 'op_connect_request' Denial Of Service Vulnerability (Win)
- Freefloat FTP Server 'ALLO' Command Remote Buffer Overflow Vulnerability
- chm2pdf Insecure Temporary File Creation or DoS Vulnerability