2 matches found
CVE-2011-4266
CVE-2011-4266 affects FFFTP prior to version 1.98d, via an untrusted search path that lets local users gain privileges using a Trojan horse executable in the same directory read to load an extensionless file (demonstrated with README.exe). The vulnerability is rooted in unsafe loading of executab...
CVE-2011-3991
CVE-2011-3991 describes an untrusted search path vulnerability in FFFTP for version 1.98a and earlier . Local users could potentially execute arbitrary code due to how the application loads executables from a directory, with the NVD listing a high impact (base score 9.3) and no required user inte...