This script is Copyright (C) 2009-2011 Tenable Network Security, Inc.
The remote FTP server is affected by multiple vulnerabilities.
The installed version of Serv-U is earlier than 22.214.171.124 and thus
is reportedly affected by the following issues :
- A directory traversal vulnerability enables an
authenticated, remote attacker to create directories
outside his or her home directory. (CVE-2009-1031)
- An authenticated, remote attacker can cause the FTP
service to become saturated for a long period of time
using a long series of 'SMNT' commands without an
argument. During this time, new connections would
not be allowed. (CVE-2009-0967)
See also :
Upgrade to Serv-U version 126.96.36.199 or later.
Risk factor :
Medium / CVSS Base Score : 4.0
CVSS Temporal Score : 3.8
Public Exploit Available : true