FTP: Vulnerable Serv-U FTP version (< 2.6)

This signature detects RhinoSoft Serv-U FTP version 2.5 and earlier. These versions have a vulnerability in the CWD command that allow users to access any file on the remote server.

Extended Description

The default settings for Serv-U cause the server to give out full physical path information in the following circumstances. A user attempting to retreive a non-existant file or change to a non-existant directory will see: 550 /d:/ftproot/nonexist: No such file or directory. A user changing to an existing directory will see: 250 Directory changed to /d:/ftproot/exist This information could be used to simplify other attacks.

Affected Products

Cat_soft serv-u

References

BugTraq: 1016

CVE: CVE-2000-0176

URL: http://archives.neohapsis.com/archives/bugtraq/2000-02/0417.html http://www.serv-u.com/ http://cgi.nessus.org/cve.php3?cve=CVE-1999-0838

Short Name

FTP:VULN:SERV-U-FTP-2-6

Severity

Info

Recommended

False

Recommended Action

None

FTP: Vulnerable Serv-U FTP version (< 2.6)

Extended Description

Affected Products

References

Found a potential security threat?