Unrated severityNVD Advisory· Published Jan 10, 2005· Updated Jun 16, 2026
CVE-2004-1277
CVE-2004-1277
Description
The download_selection_recursive() function in ftplist.c for IglooFTP 0.6.1 allows remote malicious FTP servers to overwrite arbitrary files via filenames that contain / (slash) characters.
Affected products
2Patches
Vulnerability mechanics
References
2- tigger.uic.edu/~jlongs2/holes/iglooftp2.txtnvdExploitVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/18561nvd
News mentions
0No linked articles in our index yet.