Signature Detail

Short Name	FTP:VULN:SERV-U-FTP-2-6
Severity	Info
Recommended	No
Category	FTP
Keywords	Vulnerable Serv-U FTP version (< 2.6)
Release Date	2005/02/02
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

FTP: Vulnerable Serv-U FTP version (< 2.6)

This signature detects RhinoSoft Serv-U FTP version 2.5 and earlier. These versions have a vulnerability in the CWD command that allow users to access any file on the remote server.

Extended Description

The default settings for Serv-U cause the server to give out full physical path information in the following circumstances. A user attempting to retreive a non-existant file or change to a non-existant directory will see: 550 /d:/ftproot/nonexist: No such file or directory. A user changing to an existing directory will see: 250 Directory changed to /d:/ftproot/exist This information could be used to simplify other attacks.

Affected Products

Cat Soft Serv-U 2.4.0 x
Cat Soft Serv-U 2.5.0
Cat Soft Serv-U 2.5.0 a
Cat Soft Serv-U 2.5.0 b
Cat Soft Serv-U 2.5.0 c
Cat Soft Serv-U 2.5.0 d

References

BugTraq: 1016
CVE: CVE-2000-0176
URL: http://archives.neohapsis.com/archives/bugtraq/2000-02/0417.html
URL: http://www.serv-u.com/
URL: http://cgi.nessus.org/cve.php3?cve=CVE-1999-0838

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

FTP: Vulnerable Serv-U FTP version (< 2.6)

Extended Description

Affected Products

References