This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.
The remote FTP server is affected by multiple vulnerabilities.
According to its banner, the installed version of Serv-U is earlier
than 184.108.40.206, and therefore affected by the following issues :
- A boundary error in the web administration interface
when parsing session cookies can result in a stack-based
buffer overflow. (CVE-2009-4873)
- A boundary error in the TEA decoding algorithm can
result in a stack-based buffer overflow when processing
a long hexadecimal string. (CVE-2009-4006)
See also :
Upgrade to Serv-U version 220.127.116.11 or later.
Risk factor :
High / CVSS Base Score : 9.0
CVSS Temporal Score : 7.4
Public Exploit Available : true