Microsoft File Transfer Manager (FTM) ActiveX control prior to 4.0 allows remote malicious users to upload or download arbitrary files to arbitrary locations via a man-in-the-middle attack with modified TGT and TGN parameters in a call to the "Persist" function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft file transfer manager |