Gene6 FTP Server Remote Default Install Code Execution Vulnerability

info
discussion
exploit
solution
references

Gene6 FTP Server Remote Default Install Code Execution Vulnerability

A remote code-execution vulnerability reportedly affects Gene6 FTP Server because of a configuration error that fails to secure critical functionality from default users.

An attacker that can authenticate to the affected FTP server can execute arbitrary code with SYSTEM privileges; this will facilitate privilege escalation.