This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.
The remote FTP server is affected by multiple vulnerabilities.
According to its banner, the installed version of Serv-U is earlier
than 18.104.22.168, and therefore affected by the following issues :
- A boundary error in the web administration interface
when parsing session cookies can result in a stack-based
buffer overflow. (CVE-2009-4873)
- A boundary error in the TEA decoding algorithm can
result in a stack-based buffer overflow when processing
a long hexadecimal string. (CVE-2009-4006)
See also :
Upgrade to Serv-U version 22.214.171.124 or later.
Risk factor :
High / CVSS Base Score : 9.0
CVSS Temporal Score : 7.8
Public Exploit Available : true