Serv-U FTPS Server命令通道SSL协商安全限制绕过漏洞

- AV AC AU C I A
发布: 2025-04-13
修订: 2025-04-13

BUGTRAQ ID: 50881 Serv-U FTP是一款FTP服务程序。 RhinoSoft Serv-U FTPS Server实现上存在漏洞,虽然命令通道上SSL协商失败,但服务器还是让命令通道处于运行状态,可被利用执行中间人攻击 RhinoSoft Serv-U 9.4.0.0 RhinoSoft Serv-U 9.3.0.1 RhinoSoft Serv-U 9.2.0.1 RhinoSoft Serv-U 9.1.0.4 RhinoSoft Serv-U 9.1.0.2 RhinoSoft Serv-U 9.1.0.0 RhinoSoft Serv-U 9.0.0.1 RhinoSoft Serv-U 9.0 .5 RhinoSoft Serv-U 8.3.0.23 RhinoSoft Serv-U 8.3.0.2 RhinoSoft Serv-U 8.3.0.1 RhinoSoft Serv-U 8.3.0.0 RhinoSoft Serv-U 8.2.0.3 RhinoSoft Serv-U 8.2.0.0 RhinoSoft Serv-U 8.1.0.0 RhinoSoft Serv-U 8.0.0.0 RhinoSoft Serv-U 7.9.0.0 RhinoSoft Serv-U 7.8.0.0 RhinoSoft Serv-U 7.7.0.0 RhinoSoft Serv-U 7.6.0.0 RhinoSoft Serv-U 7.5.0.0 RhinoSoft Serv-U 7.4.0.1 RhinoSoft Serv-U 7.4.0.0 RhinoSoft Serv-U 7.4 0 RhinoSoft Serv-U 7.3.0.2 RhinoSoft Serv-U 7.3.0.0 RhinoSoft Serv-U 7.2.0.1 RhinoSoft Serv-U 7.2.0.0 RhinoSoft Serv-U 7.0.0.1 RhinoSoft Serv-U 6.1 .0.5 RhinoSoft Serv-U 6.1 .0.4 RhinoSoft Serv-U 6.1 .0.1 RhinoSoft Serv-U 6.1 .0.0 RhinoSoft Serv-U 6.0 .0.2 RhinoSoft Serv-U 6.0...

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有0条受影响产品信息