Authentication Bypass Vulnerability in freeFTPd through 1.0.11

Authentication Bypass Vulnerability in freeFTPd through 1.0.11

CVE-2012-6067 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

freeFTPd.exe in freeFTPd through 1.0.11 allows remote attackers to bypass authentication via a crafted SFTP session, as demonstrated by an OpenSSH client with modified versions of ssh.c and sshconnect2.c.

Learn more about our Web Application Penetration Testing UK.