Cisco VPN 3000 Concentrator FTP Arbitrary File Access Vulnerability

info
discussion
exploit
solution
references

Cisco VPN 3000 Concentrator FTP Arbitrary File Access Vulnerability

The Cisco VPN 3000 series concentrators are prone to a vulnerability that allows attackers to access arbitrary files.

An attacker can exploit this issue to rename and delete arbitrary files on the affected device in the context of the FTP server process. This may facilitate further attacks.