Serv-U < 10.2.0.0
Medium Nessus Plugin ID 48435
SynopsisThe remote FTP server is affected by multiple vulnerabilities.
DescriptionAccording to its banner, the installed version of Serv-U is earlier than 10.2.0.0 and is, therefore, potentially affected by the following issues :
- It is possible to create a directory, when using virtual paths and various combinations of permissions, where the end-user does not have permission to create the directory.
- Certain web client invalid URL parameters could cause the affected application to crash.
SolutionUpgrade to Serv-U version 10.2.0.0 or later.