In association with heise online

19 November 2009, 13:54

Security holes in Serv-U FTP server closed

  • Twitter
  • Facebook
  • submit to slashdot
  • StumbleUpon
  • submit to reddit

The version of the Serv-U FTP Server for Windows closes two critical vulnerabilities which allow an attacker's code to infiltrate the system or restart it.

The cause of the problems are buffer overflows in the web based GUI when processing specially crafted user cookies and when decoding hexadecimal encoded strings. The new version of the FTP server from Rhinosoft also fixes numerous other non-security releated bugs and incorporates many new features and improvements.

See also:


Print Version | Send by email | Permalink:

  • July's Community Calendar

The H Open

The H Security

The H Developer

The H Internet Toolkit