Command Execution Vulnerability in wu-ftp with FTP Conversion Enabled

Command Execution Vulnerability in wu-ftp with FTP Conversion Enabled

CVE-1999-0997 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.

Learn more about our Web Application Penetration Testing UK.