3 matches found
CVE-2001-1386
WFTPD 3.00 allows remote attackers to read arbitrary files by uploading a link file that ends in a ".lnk." extension, which bypasses WFTPD's check for a ".lnk" extension...
CVE-2001-1386
WFTPD 3.00 is affected. The vulnerability allows remote attackers to read arbitrary files by uploading a file that ends in a ".lnk" extension, bypassing WFTPD’s check for that extension. Root cause is the handling of specially crafted (link) files that bypass the extension filter. Impact stated i...
CVE-2001-1386
WFTPD 3.00 allows remote attackers to read arbitrary files by uploading a link file that ends in a ".lnk." extension, which bypasses WFTPD's check for a ".lnk" extension...