CVE-2004-2532

Currently unrated

Key Information:

Vendor: Solarwinds
Status: Serv-u File Server
Vendor: CVE Published:; 31 December 2004

Summary

Serv-U FTP server before 5.1.0.0 has a default account and password for local administration, which allows local users to execute arbitrary commands by connecting to the server using the default administrator account, creating a new user, logging in as that new user, and then using the SITE EXEC command.

References

http://www.securityfocus.com/bid/10886

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/16925

vdb-entryx_refsource_XF

http://www.osvdb.org/8877

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability Reserved
Oct 25, 2005
Vulnerability published
Dec 31, 2004