Main Vulnerability Database Vulnerabilities #VU17401

Privilege escalation in Serv-U FTP Server - CVE-2018-15906

Published: February 6, 2019

Vulnerability identifier: #VU17401

CSH Severity: High

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:P/U:Amber

CVE-ID: CVE-2018-15906

CWE-ID: CWE-264

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: SolarWinds

Affected software:
Serv-U FTP Server

Detailed vulnerability description

The vulnerability allows a remote authenticated attacker to escalate privileges on the system.

The vulnerability exists due to improper privileges and access controls. A remote attacker who is a member of the "Domain Administrators" can leverage the CSV user import function and execute arbitrary code under the context of the Windows SYSTEM account in a default installation.

Successful exploitation of the vulnerability may result in system compromise.

How to mitigate CVE-2018-15906

The vulnerability has been addressed in the version 15.1.6 Hotfix 2.

Sources

https://seclists.org/fulldisclosure/2019/Feb/4

Privilege escalation in Serv-U FTP Server - CVE-2018-15906

Detailed vulnerability description

How to mitigate CVE-2018-15906

Sources

Please verify you're human