3 results (0.005 seconds)

CVSS: 7.5EPSS: 2%CPEs: 1EXPL: 2

Serv-U FTP Server allows remote attackers to bypass its anti-hammering feature by first logging on as a valid user (possibly anonymous) and then attempting to guess the passwords of other users. • https://www.exploit-db.com/exploits/20334 http://www.securityfocus.com/archive/1/141905 http://www.securityfocus.com/bid/1860 https://exchange.xforce.ibmcloud.com/vulnerabilities/5436 •

CVSS: 5.0EPSS: 0%CPEs: 6EXPL: 1

The default configuration of Serv-U 2.5d and earlier allows remote attackers to determine the real pathname of the server by requesting a URL for a directory or file that does not exist. • http://archives.neohapsis.com/archives/bugtraq/2000-02/0417.html http://www.securityfocus.com/bid/1016 •

CVSS: 7.8EPSS: 10%CPEs: 1EXPL: 1

Buffer overflow in FTP Serv-U 2.5 allows remote authenticated users to cause a denial of service (crash) via a long (1) CWD or (2) LS (list) command. • https://www.exploit-db.com/exploits/19218 http://marc.info/?l=ntbugtraq&m=92574916930144&w=2 http://marc.info/?l=ntbugtraq&m=92582581330282&w=2 http://www.securityfocus.com/bid/269 https://exchange.xforce.ibmcloud.com/vulnerabilities/205 •