tnftp: arbitrary command execution

2014-11-01T00:00:00
ID ASA-201411-1
Type archlinux
Reporter Arch Linux
Modified 2014-11-01T00:00:00

Description

A malicious webserver can trick tnftp below 20141031 via HTTP redirects into executing arbitrary commands.