The name SolarWinds is now, unfortunately, tied to the infamous cyberattack on the company last year. Thankfully, it seems that Microsoft just saved the organization from adding another cyberattack to its résumé.
Microsoft privately warned SolarWinds of a critical zero-day vulnerability in its Serv-U product line. SolarWinds Serv-U Managed File Transfer and Serv-U Secure FTP — as well as Serv-U Gateway — are at risk from this issue, which would allow hackers to remotely trigger malicious software.
If gone unpatched, a bad actor could potentially gain access to these vulnerable machines that host Serv-U productions, then install programs; manipulate data; or execute programs. This vulnerability is found in Serv-U version 15.2.3 HF1 and earlier.
SolarWinds doesn’t have a permanent patch just yet, but there are hot fixes available depending on your system:
People running Serv-U version 15.2.3 HF1 should apply hotfix (HF) 2; those using Serv-U 15.2.3 should apply Serv-U 15.2.3 HF1 and then apply Serv-U 15.2.3 HF2; and those running Serv-U versions prior to 15.2.3 should upgrade to Serv-U 15.2.3, apply Serv-U 15.2.3 HF1, and then apply Serv-U 15.2.3 HF2. The company says customers should install the fixes immediately.
Ars Technica
