SOLARWINDS DISCLAIMS ALL WARRANTIES, CONDITIONS, OR OTHER TERMS, EXPRESS OR IMPLIED, STATUTORY OR OTHERWISE, ON THE DOCUMENTATION, INCLUDING WITHOUT LIMITATION NONINFRINGEMENT, ACCURACY, COMPLETENESS, OR USEFULNESS OF ANY INFORMATION CONTAINED HEREIN. All right, title, and interest in and to the software, services, and documentation are and shall remain the exclusive property of SolarWinds, its affiliates, and/or its respective licensors. This document may not be reproduced by any means nor modified, decompiled, disassembled, published or distributed, in whole or in part, or translated to any electronic medium or other means without the prior written consent of SolarWinds. SolarWinds would like to thank Bill for reporting on the issue in a responsible manner and working with our security, product, and engineering teams to fix the vulnerability.įixed issue in CHMOD FTP command vulnerability.įixed issue in Remote command execution vulnerability. SolarWinds would like to thank Mostafa Noureldin for reporting on the issue in a responsible manner and working with our security, product, and engineering teams to fix the vulnerability.įixed issue with Serv-U not validating argument path. JQuery pre-3.4.0 vulnerability ( CVE-2019-11358) prevented with updated version of JQuery.įixed issue with Critical Information Disclosure In HTTP Responses vulnerability. Unblocked IP addresses connects correctly.Įmail issue with BlueImp STMP relay resolved.Ĭross-site scripting vulnerability with Tenable Scan resolved. Issues with using the %USER_FULL_NAME% macro over SFTP resolved. Incorrect version number after upgrade resolved. Issues resolved connecting to Serv-U using FXP client. Port connections with different IPs allowed under specific conditions.Ĭhinese and Korean characters no longer cause Serv-U to freeze. Same-Site cookie attribute security issue resolved. SFTP transfer no longer stalls due to incorrect SH channel window size.ĭomain Administrators can edit their own File-Sharing settings. Web Client Pro and FTP Voyager java client load correctly.Īntihammer connection count no longer counts connections that have not started authorization. User passwords data no longer stored using MD5. Password stale event for disabled user issue resolved. Intermittent failure issue with SFTP connection using a public key resolved. Issue where some emails created by Serv-U had incorrectly encoded subject lines resolved. Case NumberĪccount blocked correctly after multiple invalid connection attempts. Serv-U 15.2.1 fixes the following issues. Improved Internet Explorer compatibilityįor earlier Serv-U releases, please visit the Previous Versions page.Chinese and Korean characters support in file transfer.Improved Management Console user interface.MD5 passwords can be automatically changed in the first 90 days after this period they will be set to expired, and expired passwords can only be changed by an administrator. Nevertheless, it is recommended that you change these converted passwords when possible to further increase security. Unlike Serv-U 15.2, 15.2.1 does not prompt users to change their passwords. Increased password security: existing MD5 passwords converted using more secure algorithm.Serv-U 15.2.1 is a UI update and security focused release, including: Serv-U version 15.2 should be applied to installations purely with SFTP users or users who access through the Serv-U Web Client as they can be safely prompted to change their passwords after conversion. Nevertheless, it is recommended to change these converted passwords when possible to further increase security. This version increases password security and automatically converts existing MD5 passwords using a more secure algorithm when users connect for the first time after upgrade. Serv-U File Server version 15.2.1 is an alternative to version 15.2 and can be applied to any new or existing installation however it is primarily intended for installations with automated users or FTP users without access to the Serv-U Web Client.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |