Is My Serv-U Installation Affected by the SSL/TLS MITM OpenSSL Vulnerability? - KB Article #2163Related Articles -- 2156
Is my Serv-U installation affected by the SSL/TLS MITM OpenSSL vulnerability, CVE-2014-0224, disclosed at June 5, 2014?
Serv-U is officially UNAFFECTED by this vulnerability.
According to the security advisory issued by OpenSSL.org (https://www.openssl.org/news/secadv_20140605.txt), server programs are only vulnerable if they are using OpenSSL v1.0.1 or v1.0.2 (beta).
Versions older than v1.0.1 are not found exploitable.