Arbitrary File Overwrite Vulnerability in tnftp 20030825

Arbitrary File Overwrite Vulnerability in tnftp 20030825

CVE-2004-1294 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

The mget function in cmds.c for tnftp 20030825 allows remote FTP servers to overwrite arbitrary files via FTP responses containing file names with / (slash) characters.

Learn more about our Cis Benchmark Audit For Server Software.