6.6 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
74.9%
WFTPD and WFTPD Pro 2.41 RC12 allows remote attackers to obtain the full pathname of the server via a ā%Cā command, which generates an error message that includes the pathname.
archives.neohapsis.com/archives/bugtraq/2000-08/0488.html
www.osvdb.org/5829
exchange.xforce.ibmcloud.com/vulnerabilities/5196