Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
solarwinds serv-u file server vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2021-35223
The Serv-U File Server allows for events such as user login failures to be audited by executing a command. This command can be supplied with parameters that can take the form of user string variables, allowing remote code execution.
Solarwinds Serv-u
505
VMScore
CVE-2004-1675
Serv-U FTP server 4.x and 5.x allows remote malicious users to cause a denial of service (application crash) via a STORE UNIQUE (STOU) command with an MS-DOS device name argument such as (1) COM1, (2) LPT1, (3) PRN, or (4) AUX.
Solarwinds Serv-u File Server 4.0.0.4
Solarwinds Serv-u File Server 4.1.0.0
Solarwinds Serv-u File Server 4.1.0.3
Solarwinds Serv-u File Server 5.0.0.0
Solarwinds Serv-u File Server 5.0.0.4
Solarwinds Serv-u File Server 5.0.0.9
Solarwinds Serv-u File Server 5.0.0.11
Solarwinds Serv-u File Server 5.1.0.0
Solarwinds Serv-u File Server 5.2.0.0
Solarwinds Serv-u File Server 5.2.0.1
1 EDB exploit
505
VMScore
CVE-2004-1992
Buffer overflow in Serv-U FTP server prior to 5.0.0.6 allows remote malicious users to cause a denial of service (crash) via a long -l parameter, which triggers an out-of-bounds read.
Solarwinds Serv-u File Server 3.0.0.16
Solarwinds Serv-u File Server 3.0.0.17
Solarwinds Serv-u File Server 3.1.0.0
Solarwinds Serv-u File Server 3.1.0.1
Solarwinds Serv-u File Server 3.1.0.3
Solarwinds Serv-u File Server 4.0.0.4
Solarwinds Serv-u File Server 4.1.0.0
Solarwinds Serv-u File Server 4.1.0.3
Solarwinds Serv-u File Server 5.0.0.0
Solarwinds Serv-u File Server
1 EDB exploit
505
VMScore
CVE-2001-0054
Directory traversal vulnerability in FTP Serv-U prior to 2.5i allows remote malicious users to escape the FTP root and read arbitrary files by appending a string such as "/..%20." to a CD command, a variant of a .. (dot dot) attack.
Solarwinds Serv-u File Server 3.0.0.16
1 EDB exploit
445
VMScore
CVE-2020-15574
SolarWinds Serv-U File Server prior to 15.2.1 mishandles the Same-Site cookie attribute, aka Case Number 00331893.
Solarwinds Serv-u
445
VMScore
CVE-2020-15576
SolarWinds Serv-U File Server prior to 15.2.1 allows information disclosure via an HTTP response.
Solarwinds Serv-u
445
VMScore
CVE-2009-3655
Rhino Software Serv-U 7.0.0.1 up to and including 8.2.0.3 allows remote malicious users to cause a denial of service (server crash) via unspecified vectors related to the "SITE SET TRANSFERPROGRESS ON" FTP command.
Solarwinds Serv-u File Server 7.0.0.1
Solarwinds Serv-u File Server 7.0.0.2
Solarwinds Serv-u File Server 7.0.0.3
Solarwinds Serv-u File Server 7.0.0.4
Solarwinds Serv-u File Server 7.1.0.0
Solarwinds Serv-u File Server 7.1.0.1
Solarwinds Serv-u File Server 7.1.0.2
Solarwinds Serv-u File Server 7.2.0.0
Solarwinds Serv-u File Server 7.2.0.1
Solarwinds Serv-u File Server 7.3.0.0
Solarwinds Serv-u File Server 7.3.0.1
Solarwinds Serv-u File Server 7.3.0.2
Solarwinds Serv-u File Server 7.4.0.0
Solarwinds Serv-u File Server 7.4.0.1
Solarwinds Serv-u File Server 8.0.0.1
Solarwinds Serv-u File Server 8.0.0.2
Solarwinds Serv-u File Server 8.0.0.4
Solarwinds Serv-u File Server 8.0.0.5
Solarwinds Serv-u File Server 8.0.0.7
Solarwinds Serv-u File Server 8.1.0.1
Solarwinds Serv-u File Server 8.1.0.3
Solarwinds Serv-u File Server 8.2.0.0
445
VMScore
CVE-2005-3467
Serv-U FTP Server prior to 6.1.0.4 allows malicious users to cause a denial of service (crash) via (1) malformed packets and possibly other unspecified issues with unknown impact and attack vectors including (2) use of "~" in a pathname, and (3) memory consumption of th...
Solarwinds Serv-u File Server 3.0.0.16
Solarwinds Serv-u File Server 3.0.0.17
Solarwinds Serv-u File Server 3.1.0.0
Solarwinds Serv-u File Server 3.1.0.1
Solarwinds Serv-u File Server 3.1.0.3
Solarwinds Serv-u File Server 4.0.0.4
Solarwinds Serv-u File Server 4.1.0.0
Solarwinds Serv-u File Server 4.1.0.3
Solarwinds Serv-u File Server 5.0.0.0
Solarwinds Serv-u File Server 5.0.0.4
Solarwinds Serv-u File Server 5.0.0.9
Solarwinds Serv-u File Server 5.0.0.11
Solarwinds Serv-u File Server 5.1.0.0
Solarwinds Serv-u File Server 5.2.0.0
Solarwinds Serv-u File Server 5.2.0.1
Solarwinds Serv-u File Server 6.0.0.0
Solarwinds Serv-u File Server 6.0.0.1
Solarwinds Serv-u File Server 6.0.0.2
Solarwinds Serv-u File Server 6.1.0.0
Solarwinds Serv-u File Server
445
VMScore
CVE-2004-2533
Serv-U FTP Server 4.1 (possibly 4.0) allows remote malicious users to cause a denial of service (application crash) via a SITE CHMOD command with a "\\...\" followed by a short string, causing partial memory corruption, a different vulnerability than CVE-2004-2111.
Solarwinds Serv-u File Server 4.1.0.0
445
VMScore
CVE-2002-2393
Serv-U FTP server 3.0, 3.1 and 4.0.0.4 does not accept new connections while validating user folder access rights, which allows remote malicious users to cause a denial of service (no new connections) via a series of MKD commands.
Solarwinds Serv-u File Server 3.1.0.0
Solarwinds Serv-u File Server 4.0.0.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »