CVE-2008-3731

Severity

40%

Complexity

80%

Confidentiality

48%

Upgrade to 7.2.0.1

Unspecified vulnerability in Serv-U File Server 7.0.0.1, and other versions before 7.2.0.1, allows remote authenticated users to cause a denial of service (daemon crash) via an SSH session with SFTP commands for directory creation and logging.

Upgrade to 7.2.0.1

CVSS 2.0 Base Score 4. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:S/C:N/I:N/A:P).

Overview

Type

Serv-U

First reported 16 years ago

2008-08-20 16:41:00

Last updated 7 years ago

2017-08-08 01:32:00

Affected Software

Serv-U 7.0.0.1

7.0.0.1

Serv-U 7.0.0.2

7.0.0.2

Serv-U 7.0.0.3

7.0.0.3

Serv-U 7.0.0.4

7.0.0.4

Serv-U 7.1.0.0

7.1.0.0

Serv-U 7.1.0.1

7.1.0.1

Serv-U 7.1.0.2

7.1.0.2

Serv-U 7.2.0.0

7.2.0.0

References

31461

Vendor Advisory

30739

http://www.serv-u.com/releasenotes/

servu-fileserver-sftp-dos(44537)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.