FTP: Vulnerable Serv-U FTP version (< 4.2)
This signature detects RhinoSoft Serv-U FTP 4.2 and earlier. These versions contain a buffer overflow vulnerability in the CHMOD command that enables attackers to execute malicous code on a remote server.
Extended Description
RhinoSoft Serv-U FTP Server is prone to a remote post-authentication buffer-overflow vulnerability. The vulnerability occurs when a malicious filename argument is passed to the SITE CHMOD command. The immediate consequences of this issue may be a denial of service. An attacker may be able to leverage this condition to execute arbitrary code in the context of the affected service, but this has not been confirmed.
Affected Products
Rhino_software serv-u
References
BugTraq: 9675
CVE: CVE-2004-2533
URL: http://www.serv-u.com/ http://www.securityfocus.com/archive/82/354209/2004-02-14/2004-02-20/0
Short Name
FTP:VULN:SERV-U-FTP-4-2
Severity
Info
Recommended
False
Recommended Action
None
Category
FTP
Keywords
(< 4.2) CVE-2004-2533 FTP Serv-U Vulnerable bid:9675 version
Release Date
01/29/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Rarely
Vendors
Rhino_software
CVSS Score
5.0