CVE-2005-3296

The FTP server in HP-UX 10.20, B.11.00, and B.11.11, allows remote attackers to list arbitrary directories as root by running the LIST command before logging in.

Date published : 2005-10-23

http://www.securityfocus.com/bid/15138

http://cert.uni-stuttgart.de/archive/bugtraq/2005/11/msg00126.html