2 matches found
CVE-2011-4266
Untrusted search path vulnerability in FFFTP before 1.98d allows local users to gain privileges via a Trojan horse executable file in a directory that is accessed for reading an extensionless file, as demonstrated by executing the README.exe file when a user attempts to access the README file, a...
CVE-2011-4266
CVE-2011-4266 affects FFFTP prior to version 1.98d, via an untrusted search path that lets local users gain privileges using a Trojan horse executable in the same directory read to load an extensionless file (demonstrated with README.exe). The vulnerability is rooted in unsafe loading of executab...