Lucene search
Japan Vulnerability NotesJVN:62336482HistoryOct 28, 2011 - 12:00 a.m.
JVN#62336482: FFFTP may insecurely load executable files
2011-10-2800:00:00
Japan Vulnerability Notes
jvn.jp
10
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.001
Percentile
48.0%
FFFTP loads certain executables when using certain functions. FFFTP contains an issue with the file search path, which may insecurely load executables.
Impact
An attacker may execute arbitrary code with the privilege of the running application.
Solution
Update the software
Update to the latest version according to the information provided by the developer.
Products Affected
- FFFTP Version 1.98a and earlier
Related
openvas
openvas
FFFTP Untrusted Search Path Vulnerability (Windows)
2011-11-08 00:00:00
FFFTP Untrusted Search Path Vulnerability - Windows
2011-11-08 00:00:00
cve
cve
CVE-2011-3991
2011-11-04 21:55:08
CVE-2011-4266
2011-12-13 11:55:06
prion
prion
Design/Logic Flaw
2011-11-04 21:55:00
Design/Logic Flaw
2011-12-13 11:55:00
cvelist
cvelist
CVE-2011-3991
2011-11-04 21:00:00
CVE-2011-4266
2011-12-13 11:00:00
nvd
nvd
CVE-2011-3991
2011-11-04 21:55:08
CVE-2011-4266
2011-12-13 11:55:06
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
EPSS
0.001
Percentile
48.0%
Related for JVN:62336482