Microsoft discovers threat actor targeting SolarWinds Serv-U software with 0-day exploit

Microsoft has detected a 0-day remote code execution exploit being used to attack SolarWinds Serv-U FTP software in limited and targeted attacks. The Microsoft Threat Intelligence Center MSTIC attributes this campaign with high confidence to DEV-0322, a group operating out of China, based on...

Serv-U DOS devices access

STOUD command allows to access DOS devices...

Serv-U privilege escalation

With SITE EXEC command from local interface it's possible to execute any command with system privileges...