cpe:/a:serv-u:serv-u:7.0.0.1 cpe:/a:serv-u:serv-u:7.0.0.2 cpe:/a:serv-u:serv-u:7.0.0.3 cpe:/a:serv-u:serv-u:7.0.0.4 cpe:/a:serv-u:serv-u:7.1.0.0 cpe:/a:serv-u:serv-u:7.1.0.1 cpe:/a:serv-u:serv-u:7.1.0.2 cpe:/a:serv-u:serv-u:7.2.0.0 cpe:/a:serv-u:serv-u:7.2.0.1 cpe:/a:serv-u:serv-u:7.3.0.0 cpe:/a:serv-u:serv-u:7.3.0.1 cpe:/a:serv-u:serv-u:7.3.0.2 cpe:/a:serv-u:serv-u:7.4.0.0 cpe:/a:serv-u:serv-u:7.4.0.1 CVE-2009-1031 2009-03-19T20:30:00.717-04:00 2017-09-28T21:34:07.840-04:00 7.8 NETWORK LOW NONE NONE COMPLETE NONE http://nvd.nist.gov 2009-03-20T09:46:00.000-04:00 BID 34125 SECUNIA 34329 OSVDB 52773 EXPLOIT-DB 8211 VUPEN ADV-2009-0738 XF servuftp-mkd-dir-traversal(49258) Directory traversal vulnerability in the FTP server in Rhino Software Serv-U File Server 7.0.0.1 through 7.4.0.1 allows remote attackers to create arbitrary directories via a \.. (backslash dot dot) in an MKD request.