CVE-2018-19999
Summary
| CVE | CVE-2018-19999 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-06-07 17:29:00 UTC |
| Updated | 2019-06-10 16:53:00 UTC |
| Description | The local management interface in SolarWinds Serv-U FTP Server 15.1.6.25 has incorrect access controls that permit local users to bypass authentication in the application and execute code in the context of the Windows SYSTEM account, leading to privilege escalation. To exploit this vulnerability, an attacker must have local access the the host running Serv-U, and a Serv-U administrator have an active management console session. |
Risk And Classification
Problem Types: CWE-287
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Solarwinds | Serv-u Ftp Server | 15.1.6.25 | All | All | All |
| Application | Solarwinds | Serv-u Ftp Server | 15.1.6.25 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Full Disclosure: Local Privilege Escalation via Serv-U FTP Server | MISC | seclists.org | Mailing List, Third Party Advisory |
| Advisory cve-2018-19999 | MISC | www.themissinglink.com.au | Broken Link |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.