CVE-2021-41635 Information

Description

When installed as Windows service MELAG FTP Server 2.2.0.4 is run as SYSTEM user which grants remote attackers to abuse misconfigurations or vulnerabilities with administrative access over the entire host system.

Reference

https://www.securesystems.de/blog/advisory-and-exploitation-the-melag-ftp-server/