CVE-1999-1345 Information

Description

Auto_FTP.pl script in Auto_FTP 0.2 uses the /tmp/ftp_tmp as a shared directory with insecure permissions which allows local users to (1) send arbitrary files to the remote server by placing them in the directory and (2) view files that are being transferred.

Reference

http://marc.info/?l=bugtraq&m=93923873006014&w=2