Arbitrary File Overwrite Vulnerability in IglooFTP 0.6.1

CVE-2004-1277 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The download_selection_recursive() function in ftplist.c for IglooFTP 0.6.1 allows remote malicious FTP servers to overwrite arbitrary files via filenames that contain / (slash) characters.

Learn more about our Cis Benchmark Audit For Server Software.