WFTPD 3.00 allows remote malicious users to read arbitrary files by uploading a (link) file that ends in a ".lnk." extension, which bypasses WFTPD's check for a ".lnk" extension.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
texasimperialsoftware wftpd 3.00 |