CVE-2014-0605

Attachmate Reflection FTP Client < 14.1.420 - Remote Code Execution via rftpcom.dll SaveSettings Method

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in the rftpcom.dll ActiveX control in Attachmate Reflection FTP Client before 14.1.429 allows remote attackers to execute arbitrary code via unspecified vectors to the SaveSettings method.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
http://support.attachmate.com/techdocs/2501.html
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-290/

Scores

EPSS 0.0774
EPSS Percentile 93.9%

Details

CWE
CWE-22
Status published
Products (1)
attachmate/reflection_ftp_client < 14.1.420
Published Feb 06, 2015
Tracked Since Feb 18, 2026