Denial of Service Vulnerability in Serv-U FTP Server by SolarWinds
CVE-2009-0967

Currently unrated

Key Information:

Vendor: Solarwinds
Status: Serv-u File Server
Vendor: CVE Published:; 19 March 2009

Summary

The Serv-U FTP Server, versions 7.0.0.1 to 7.4.0.1, is susceptible to a denial of service attack. Remote authenticated users can exploit this vulnerability by sending a large number of SMNT commands without any accompanying arguments. This flood of requests can lead to a service hang, rendering the FTP server inoperable and disrupting service availability for legitimate users.

References

https://www.exploit-db.com/exploits/8212

exploitx_refsource_EXPLOIT-DB

http://www.securityfocus.com/bid/34127

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/49260

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Mar 19, 2009
Vulnerability Reserved
Mar 18, 2009