Serv-U LocalAdministrator exploit v1.9 Vulnerability exploited: NOCVE-2004-7676 - BID-10886 Category: Exploits/Local This module exploits a local vulnerability in Serv-U and installs a level0 agent into the target host. Serv-U FTP versions 3.x, 4.x and 5.x ship with a default administrative account. A local attacker could establish a connection using the administrative authentication credentials and gain elevated privileges on the server. Supported Systems: Windows 2000 Advanced Server - sp3 (i386) Windows 2000 Advanced Server - sp4 (i386) Windows 2000 Server - sp0 (i386) Windows 2000 Server - sp3 (i386) Windows 2000 Server - sp4 (i386) Windows 2000 Professional - sp3 (i386) Windows 2000 Professional - sp4 (i386) Serv-U v4.1.0.0 Serv-U v4.1.0.3 Serv-U v4.0.0.4 This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.