VYPR
Unrated severityNVD Advisory· Published Feb 22, 2012· Updated Jun 16, 2026

CVE-2012-0315

CVE-2012-0315

Description

Untrusted search path vulnerability in ALFTP before 5.31 allows local users to gain privileges via a Trojan horse executable file in a directory that is accessed for reading an extensionless file, as demonstrated by executing the README.exe file when a user attempts to access the README file.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

7
  • Estsoft/Alftp6 versions
    cpe:2.3:a:estsoft:alftp:*:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:a:estsoft:alftp:*:*:*:*:*:*:*:*range: <=5.1
    • cpe:2.3:a:estsoft:alftp:4.1:*:*:*:*:*:*:*
    • cpe:2.3:a:estsoft:alftp:4.1:beta2:*:*:*:*:*:*
    • cpe:2.3:a:estsoft:alftp:4.1:beta2:*:en:*:*:*:*
    • cpe:2.3:a:estsoft:alftp:5.0:*:*:*:*:*:*:*
    • cpe:2.3:a:estsoft:alftp:5.1:beta2:*:*:*:*:*:*
  • Altools/ALFTPllm-create
    Range: <=5.30

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.