CVE-2004-1276

Name of the Vulnerable Software and Affected Versions: IglooFTP version 0.6.1

Description: The issue allows local users to overwrite files being uploaded by creating temporary files with names generated by the tmpnam function, before the files are opened. This occurs when recursively uploading a directory.

Recommendations: For IglooFTP version 0.6.1, consider restricting access to the tmpnam function or implementing an alternative method for generating temporary file names to prevent unauthorized overwriting of files. At the moment, there is no information about a newer version that contains a fix for this vulnerability.