A vulnerability has been found within the FTP client in AceFTP. When exploited, this vulnerability allows an anonymous attacker to write files to arbitrary locations on a Windows user's system.

This advisory discloses a vulnerability within the FTP client in AceFTP. When exploited, this vulnerability allows an anonymous attacker to write files to arbitrary locations on a Windows user's system.

The FTP client does not properly sanitise filenames containing directory traversal sequences (forward-slash) that are received from an FTP server in response to the LIST command.

Response to LIST (forward-slash):

-rw-r--r--    1 ftp      ftp            20 Mar 01 05:37 /../../../../../../../../../testfile.txt\r\n

By tricking a user to download a directory from a malicious FTP server that contains files with fowward-slash directory traversal sequences in their filenames, it is possible for the attacker to write files to arbitrary locations on a user's system with privileges of that user. An attacker can potentially leverage this issue to write files into a user's Windows Startup folder and execute arbitrary code when the user logs on.

Freeze 23 12 29 Chloe Temple Corrupted: Priest X Hot

The corruption had crept in slowly. Offers of wealth and protection for her congregation had turned into demands. Threats had been made, and Chloe had made her choices. Now, she was known as a corrupted priest, feared and avoided by those she once protected.

In the year 2023, on December 29th, Chloe Temple stood at the crossroads of her existence. A priest once revered for her compassion and strength, Chloe had seen the darker side of humanity. The world was on the brink of collapse, not just from environmental disasters but from the decay of moral fiber. And Chloe, like many, had succumbed to the temptation of power. freeze 23 12 29 chloe temple corrupted priest x hot

But Chloe knew she wasn't beyond redemption. She held within her a spark of her former self, a flame that flickered with every memory of why she became a priest in the first place. The question was, could she find her way back? The corruption had crept in slowly

The air was thick with tension as Chloe stepped out of the shadows, her figure drawing eyes. The descriptor "hot" wasn't just about the December heat; it was about the intensity, the passion, and the power that radiated from her. Now, she was known as a corrupted priest,

2008-06-15 - Vulnerability Discovered.
2008-06-16 - Vulnerability Details Sent to Vendor via online support form (no reply).
2008-06-18 - Vulnerability Details Sent to Vendor again via online support form (no reply).
2008-06-25 - Vulnerability Details Sent to Vendor again via online support form (no reply).
2008-06-27 - Public Release.