2 matches found
CVE-2001-0934
Cooolsoft PowerFTP Server 2.03 is vulnerable: the pwd command discloses the full server root path, enabling information disclosure. Impact is partial confidentiality; no exploitation details are provided. No remediation is stated in the supplied documents.
CVE-2001-0933
The connected records confirm the issue affects Cooolsoft PowerFTP Server 2.03. A remote attacker can list contents of arbitrary drives by issuing a LIST (ls) command that includes a drive letter argument (e.g., "ls C:"). This indicates a potential command handling/input validation flaw in the FT...