3 matches found
Design/Logic Flaw
Untrusted search path vulnerability in FFFTP before 1.98d allows local users to gain privileges via a Trojan horse executable file in a directory that is accessed for reading an extensionless file, as demonstrated by executing the README.exe file when a user attempts to access the README file, a...
FFFTP < 1.98b Untrusted Search Path Vulnerability - Windows
FFFTP is prone to untrusted search path vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2011-3991
CVE-2011-3991 describes an untrusted search path vulnerability in FFFTP for version 1.98a and earlier . Local users could potentially execute arbitrary code due to how the application loads executables from a directory, with the NVD listing a high impact (base score 9.3) and no required user inte...