ArGoSoft FTP Server prior to 1.4.2.7 allows remote malicious users to read arbitrary files by uploading a ZIP file containing a shortcut (.LNK) file, using SITE UNZIP to extract the .LNK file onto the server, then accessing the file, a different vulnerability than CVE-2005-0520.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
argosoft ftp server 1.4.1.1 |
||
argosoft ftp server 1.4.1.2 |
||
argosoft ftp server 1.4.1.9 |
||
argosoft ftp server 1.4.2 |
||
argosoft ftp server 1.4.1.7 |
||
argosoft ftp server 1.4.1.8 |
||
argosoft ftp server 1.4.1.3 |
||
argosoft ftp server 1.4.1.4 |
||
argosoft ftp server 1.4.2.1 |
||
argosoft ftp server 1.4.2.2 |
||
argosoft ftp server 1.4.1.5 |
||
argosoft ftp server 1.4.1.6 |