CVE-2014-2845
The CVE-2014-2845 entry applies to Cyberduck for Windows prior to 4.4.4, where the client does not properly validate X.509 certificate chains. This flaw allows MITM when using FTP-SSL because certificates issued by untrusted roots may be accepted. The NVD description and the SySS advisory confirm...