Fastream · Netfile Ftp/Web Server · CVE-2004-0676
**Name of the Vulnerable Software and Affected Versions**
Fastream NETFile FTP/Web Server versions 6.7.2.1085 and earlier
**Description**
A directory traversal issue allows remote attackers to create or delete arbitrary files by using .. (dot dot) and // (double slash) sequences in the `filename` parameter.
**Recommendations**
For versions 6.7.2.1085 and earlier, update to a version later than 6.7.2.1085 to resolve the issue.