Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
CompleteFTPService.exe in the server in EnterpriseDT CompleteFTP before 12.1.4 allows Remote Code Execution by leveraging a Windows user account that has SSH access. The exec command is always run as SYSTEM.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Enterprise Distributed Technologies CompleteFTP Server 命令注入漏洞
Vulnerability Description
Enterprise Distributed Technologies CompleteFTP Server是澳大利亚Enterprise Distributed Technologies公司的一款基于Windows的SFTP(SHH文件传输协议)服务器。 Enterprise Distributed Technologies CompleteFTP Server 12.1.4之前版本存在安全漏洞,该漏洞源于exec命令始终作为系统运行。具有SSH访问权限的攻击者可利用该漏洞远程执行代码。。
CVSS Information
N/A
Vulnerability Type
N/A