Serv-U 'SITE SET TRANSFERPROGRESS ON' Command Remote Denial Of Service Vulnerability Network Vulnerability

Summary

Serv-U is prone to a remote denial-of-service vulnerability. Successfully exploiting this issue will allow attackers to deny service to legitimate users. Serv-U 7.0.0.1 through 8.2.0.3 are vulnerable other versions may also be affected.

Solution

The vendor has released an update. Please see the references for details.

References

http://www.securityfocus.com/bid/36585
http://www.serv-u.com/
http://www.serv-u.com/releasenotes/

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

XM Easy Personal FTP Server 'LIST' And 'NLST' Command DoS Vulnerability
Telnet-FTP Server 'RETR' Command Remote Denial of Service Vulnerability
Serv-U File Server User Directory Information Disclosure Vulnerability
TurboFTP 'DELE' FTP Command Remote Buffer Overflow Vulnerability
KnFTP Server 'FEAT' Command Remote Denial of Service Vulnerability

Serv-U 'SITE SET TRANSFERPROGRESS ON' Command Remote Denial of Service Vulnerability

Take action and discover your vulnerabilities