What’s New We’ve added four major new account management and reporting features in Cerberus FTP Server 12.2: Showing group membership from Active Directory (AD) group to Cerberus group mappings for AD usersNative Cerberus users now have secondary groups to allow...
Security Advisory Description Cerberus FTP Server versions prior to 12.2.0 and 11.3.10 are vulnerable to a SSL/TLS Triple Handshake attack. In a previous blog post, we discussed functionality to limit vulnerabilities due to renegotiation attacks. miTLS describe the...
Enterprise users of Cerberus FTP Server have frequently requested an integrated way to clean their reporting database. A new feature for 12.2 allows administrators to remove old audit & file records. Accessible from the database configuration page, administrators...
Security Advisory Description During a security audit, we determined that Cerberus FTP Server Enterprise versions prior to 12.2 and 11.3.10 are vulnerable to a cross-site scripting (XSS) attack. This vulnerability is located in the preview lightbox plugin...
Building on the “Send a File” file feature introduced in 11.2, we’ve added another highly requested action for the Transfer File Target that allows retrieving a file from another server via SFTP, FTP, FTPS, or HTTP/S GET in Cerberus FTP Server 12.1 Enterprise. With...
Security Advisory Description Cerberus FTP Server versions prior to 12.1 and 11.3.9 are vulnerable to a SSL Renegotiation Denial of Service attack. This vulnerability is a form of CVE-2011-1473 which abuses the normal TLS/SSL connection process to create excessive CPU...
