Serv-U 'SITE SET TRANSFERPROGRESS ON' Command Remote Denial Of Service Vulnerability Network Vulnerability

Summary

Serv-U is prone to a remote denial-of-service vulnerability. Successfully exploiting this issue will allow attackers to deny service to legitimate users. Serv-U 7.0.0.1 through 8.2.0.3 are vulnerable other versions may also be affected.

Solution

The vendor has released an update. Please see the references for details.

References

http://www.securityfocus.com/bid/36585
http://www.serv-u.com/
http://www.serv-u.com/releasenotes/

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Surge-FTP Admin Multiple Reflected Cross-site Scripting Vulnerabilities
WarFTPD Multiple Format String Vulnerabilities
Home FTP Server 'MKD' Command Directory Traversal Vulnerability
Wing FTP Server Denial of Service Vulnerability and Information Disclosure Vulnerability
Cerberus FTP Server Long Command Remote Denial of Service Vulnerability

Serv-U 'SITE SET TRANSFERPROGRESS ON' Command Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities