Signature Detail

Short Name	FTP:VULN:SERV-U-FTP-4-2
Severity	Info
Recommended	No
Category	FTP
Keywords	Vulnerable Serv-U FTP version (< 4.2)
Release Date	2005/01/28
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

FTP: Vulnerable Serv-U FTP version (< 4.2)

This signature detects RhinoSoft Serv-U FTP 4.2 and earlier. These versions contain a buffer overflow vulnerability in the CHMOD command that enables attackers to execute malicous code on a remote server.

Extended Description

RhinoSoft Serv-U FTP Server is prone to a remote post-authentication buffer-overflow vulnerability. The vulnerability occurs when a malicious filename argument is passed to the SITE CHMOD command. The immediate consequences of this issue may be a denial of service. An attacker may be able to leverage this condition to execute arbitrary code in the context of the affected service, but this has not been confirmed.

Affected Products

Rhino Software Serv-U 3.1.0
Rhino Software Serv-U 4.0.0 .0.4
Rhino Software Serv-U 4.1.0
Rhino Software Serv-U 4.1.0 .0.11
Rhino Software Serv-U 5.0.0 .0.4

References

BugTraq: 9675
CVE: CVE-2004-2533
URL: http://www.serv-u.com/
URL: http://www.securityfocus.com/archive/82/354209/2004-02-14/2004-02-20/0

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

FTP: Vulnerable Serv-U FTP version (< 4.2)

Extended Description

Affected Products

References