The FTP service in 3Com 3CDaemon 2.0 revision 10 allows remote malicious users to gain sensitive information via a cd command that contains an MS-DOS device name, which reveals the installation path in an error message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
3com 3cdaemon 2.0 |