ALFTP Untrusted Search Path Privilege Escalation Vulnerability

ALFTP Untrusted Search Path Privilege Escalation Vulnerability

CVE-2012-0315 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Untrusted search path vulnerability in ALFTP before 5.31 allows local users to gain privileges via a Trojan horse executable file in a directory that is accessed for reading an extensionless file, as demonstrated by executing the README.exe file when a user attempts to access the README file.

Learn more about our User Device Pen Test.