Unrated severityNVD Advisory· Published Jan 10, 2005· Updated Jun 16, 2026
CVE-2004-1294
CVE-2004-1294
Description
The mget function in cmds.c for tnftp 20030825 allows remote FTP servers to overwrite arbitrary files via FTP responses containing file names with / (slash) characters.
Affected products
2- cpe:2.3:a:luke_mewburn:tnftp:2003-08-25:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2- tigger.uic.edu/~jlongs2/holes/tnftp.txtnvdExploitVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/18560nvd
News mentions
0No linked articles in our index yet.