Home » Hacking News » ST FTP information disclosure
ST FTP information disclosure
by Mario Miri on May 27th, 2003 ST FTP Service 3.0 fails to enforce document root directory, resulting in capability of arbitrary file access as ftp-service process.
Vulnerable:
STSoft ST FTP Service 3.0
Solution:
Currently there are no vendor supplied patches.