Serv-U File Server User Directory Information Disclosure Vulnerability Network Vulnerability

Summary

Serv-U File Server is prone to an unspecified information-disclosure vulnerability. Attackers can exploit this issue to harvest sensitive information that may lead to further attacks. Versions prior to SERV-U File Server 9.2.0.1 are vulnerable.

Solution

The vendor has released an update. Please see the references for details.

References

http://www.securityfocus.com/bid/37414
http://www.serv-u.com/
http://www.serv-u.com/releasenotes/

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4815

CVSS	Base Score: 4.0 AV:N/AC:L/Au:S/C:P/I:N/A:N

Related Vulnerabilities

FTP Writeable Directories
Telnet-FTP Server 'RETR' Command Remote Denial of Service Vulnerability
Blackmoon FTP PORT Command Denial Of Service Vulnerability
ProFTPD mod_tls Module NULL Character CA SSL Certificate Validation Security Bypass Vulnerability
FileCOPA FTP Server Multiple Directory Traversal Vulnerabilities

Take action and discover your vulnerabilities