Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0967

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2009-0967
Last Modified 27 Apr 2010 03:24:10
Published 19 Mar 2009 06:30:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2009-0967

Summary

The FTP server in Serv-U 7.0.0.1 through 7.4.0.1 allows remote authenticated users to cause a denial of service (service hang) via a large number of SMNT commands without an argument.

Vulnerable Systems

Application

  • Serv-u 7.0.0.1

  • Serv-u 7.0.0.2

  • Serv-u 7.0.0.3

  • Serv-u 7.0.0.4

  • Serv-u 7.1.0.0

  • Serv-u 7.1.0.1

  • Serv-u 7.1.0.2

  • Serv-u 7.2.0.0

  • Serv-u 7.2.0.1

  • Serv-u 7.3.0.0

  • Serv-u 7.3.0.1

  • Serv-u 7.3.0.2

  • Serv-u 7.4.0.0

  • Serv-u 7.4.0.1


References

XF - servuftp-smnt-dos(49260)

BID - 34127

MILW0RM - 8212


Last Updated: 27 May 2016 10:50:26