wu-ftp with FTP conversion enabled allows an malicious user to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
millenux gmbh anonftp 2.8.1 |
||
university of washington wu-ftpd 2.5.0 |
||
university of washington wu-ftpd 2.6.0 |
||
university of washington wu-ftpd 2.4.2 |
||
redhat linux 6.1 |
||
redhat linux 5.2 |
||
redhat linux 6.0 |